2 * Copyright (c) 2012-2017 Qualcomm Atheros, Inc.
3 * Copyright (c) 2018, The Linux Foundation. All rights reserved.
5 * Permission to use, copy, modify, and/or distribute this software for any
6 * purpose with or without fee is hereby granted, provided that the above
7 * copyright notice and this permission notice appear in all copies.
9 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
18 #include <linux/moduleparam.h>
19 #include <linux/etherdevice.h>
20 #include <linux/if_arp.h>
27 static uint max_assoc_sta = WIL6210_MAX_CID;
28 module_param(max_assoc_sta, uint, 0644);
29 MODULE_PARM_DESC(max_assoc_sta, " Max number of stations associated to the AP");
31 int agg_wsize; /* = 0; */
32 module_param(agg_wsize, int, 0644);
33 MODULE_PARM_DESC(agg_wsize, " Window size for Tx Block Ack after connect;"
34 " 0 - use default; < 0 - don't auto-establish");
36 u8 led_id = WIL_LED_INVALID_ID;
37 module_param(led_id, byte, 0444);
38 MODULE_PARM_DESC(led_id,
39 " 60G device led enablement. Set the led ID (0-2) to enable");
41 #define WIL_WAIT_FOR_SUSPEND_RESUME_COMP 200
42 #define WIL_WMI_CALL_GENERAL_TO_MS 100
45 * WMI event receiving - theory of operations
47 * When firmware about to report WMI event, it fills memory area
48 * in the mailbox and raises misc. IRQ. Thread interrupt handler invoked for
49 * the misc IRQ, function @wmi_recv_cmd called by thread IRQ handler.
51 * @wmi_recv_cmd reads event, allocates memory chunk and attaches it to the
52 * event list @wil->pending_wmi_ev. Then, work queue @wil->wmi_wq wakes up
53 * and handles events within the @wmi_event_worker. Every event get detached
54 * from list, processed and deleted.
56 * Purpose for this mechanism is to release IRQ thread; otherwise,
57 * if WMI event handling involves another WMI command flow, this 2-nd flow
58 * won't be completed because of blocked IRQ thread.
62 * Addressing - theory of operations
64 * There are several buses present on the WIL6210 card.
65 * Same memory areas are visible at different address on
66 * the different busses. There are 3 main bus masters:
68 * - User CPU (firmware)
71 * On the PCI bus, there is one BAR (BAR0) of 2Mb size, exposing
72 * AHB addresses starting from 0x880000
74 * Internally, firmware uses addresses that allow faster access but
75 * are invisible from the host. To read from these addresses, alternative
76 * AHB address must be used.
80 * @sparrow_fw_mapping provides memory remapping table for sparrow
82 * array size should be in sync with the declaration in the wil6210.h
84 * Sparrow memory mapping:
85 * Linker address PCI/Host address
86 * 0x880000 .. 0xa80000 2Mb BAR0
87 * 0x800000 .. 0x808000 0x900000 .. 0x908000 32k DCCM
88 * 0x840000 .. 0x860000 0x908000 .. 0x928000 128k PERIPH
90 const struct fw_map sparrow_fw_mapping[] = {
91 /* FW code RAM 256k */
92 {0x000000, 0x040000, 0x8c0000, "fw_code", true, true},
94 {0x800000, 0x808000, 0x900000, "fw_data", true, true},
95 /* periph data 128k */
96 {0x840000, 0x860000, 0x908000, "fw_peri", true, true},
98 {0x880000, 0x88a000, 0x880000, "rgf", true, true},
100 {0x88a000, 0x88b000, 0x88a000, "AGC_tbl", true, true},
101 /* Pcie_ext_rgf 4k */
102 {0x88b000, 0x88c000, 0x88b000, "rgf_ext", true, true},
103 /* mac_ext_rgf 512b */
104 {0x88c000, 0x88c200, 0x88c000, "mac_rgf_ext", true, true},
105 /* upper area 548k */
106 {0x8c0000, 0x949000, 0x8c0000, "upper", true, true},
107 /* UCODE areas - accessible by debugfs blobs but not by
108 * wmi_addr_remap. UCODE areas MUST be added AFTER FW areas!
110 /* ucode code RAM 128k */
111 {0x000000, 0x020000, 0x920000, "uc_code", false, false},
112 /* ucode data RAM 16k */
113 {0x800000, 0x804000, 0x940000, "uc_data", false, false},
117 * @sparrow_d0_mac_rgf_ext - mac_rgf_ext section for Sparrow D0
118 * it is a bit larger to support extra features
120 const struct fw_map sparrow_d0_mac_rgf_ext = {
121 0x88c000, 0x88c500, 0x88c000, "mac_rgf_ext", true, true
125 * @talyn_fw_mapping provides memory remapping table for Talyn
127 * array size should be in sync with the declaration in the wil6210.h
129 * Talyn memory mapping:
130 * Linker address PCI/Host address
131 * 0x880000 .. 0xc80000 4Mb BAR0
132 * 0x800000 .. 0x820000 0xa00000 .. 0xa20000 128k DCCM
133 * 0x840000 .. 0x858000 0xa20000 .. 0xa38000 96k PERIPH
135 const struct fw_map talyn_fw_mapping[] = {
137 {0x000000, 0x100000, 0x900000, "fw_code", true, true},
138 /* FW data RAM 128k */
139 {0x800000, 0x820000, 0xa00000, "fw_data", true, true},
140 /* periph. data RAM 96k */
141 {0x840000, 0x858000, 0xa20000, "fw_peri", true, true},
142 /* various RGF 40k */
143 {0x880000, 0x88a000, 0x880000, "rgf", true, true},
145 {0x88a000, 0x88b000, 0x88a000, "AGC_tbl", true, true},
146 /* Pcie_ext_rgf 4k */
147 {0x88b000, 0x88c000, 0x88b000, "rgf_ext", true, true},
148 /* mac_ext_rgf 1344b */
149 {0x88c000, 0x88c540, 0x88c000, "mac_rgf_ext", true, true},
150 /* ext USER RGF 4k */
151 {0x88d000, 0x88e000, 0x88d000, "ext_user_rgf", true, true},
153 {0x8a0000, 0x8a1000, 0x8a0000, "otp", true, false},
154 /* DMA EXT RGF 64k */
155 {0x8b0000, 0x8c0000, 0x8b0000, "dma_ext_rgf", true, true},
156 /* upper area 1536k */
157 {0x900000, 0xa80000, 0x900000, "upper", true, true},
158 /* UCODE areas - accessible by debugfs blobs but not by
159 * wmi_addr_remap. UCODE areas MUST be added AFTER FW areas!
161 /* ucode code RAM 256k */
162 {0x000000, 0x040000, 0xa38000, "uc_code", false, false},
163 /* ucode data RAM 32k */
164 {0x800000, 0x808000, 0xa78000, "uc_data", false, false},
168 * @talyn_mb_fw_mapping provides memory remapping table for Talyn-MB
170 * array size should be in sync with the declaration in the wil6210.h
172 * Talyn MB memory mapping:
173 * Linker address PCI/Host address
174 * 0x880000 .. 0xc80000 4Mb BAR0
175 * 0x800000 .. 0x820000 0xa00000 .. 0xa20000 128k DCCM
176 * 0x840000 .. 0x858000 0xa20000 .. 0xa38000 96k PERIPH
178 const struct fw_map talyn_mb_fw_mapping[] = {
179 /* FW code RAM 768k */
180 {0x000000, 0x0c0000, 0x900000, "fw_code", true, true},
181 /* FW data RAM 128k */
182 {0x800000, 0x820000, 0xa00000, "fw_data", true, true},
183 /* periph. data RAM 96k */
184 {0x840000, 0x858000, 0xa20000, "fw_peri", true, true},
185 /* various RGF 40k */
186 {0x880000, 0x88a000, 0x880000, "rgf", true, true},
188 {0x88a000, 0x88b000, 0x88a000, "AGC_tbl", true, true},
189 /* Pcie_ext_rgf 4k */
190 {0x88b000, 0x88c000, 0x88b000, "rgf_ext", true, true},
191 /* mac_ext_rgf 2256b */
192 {0x88c000, 0x88c8d0, 0x88c000, "mac_rgf_ext", true, true},
193 /* ext USER RGF 4k */
194 {0x88d000, 0x88e000, 0x88d000, "ext_user_rgf", true, true},
196 {0x890000, 0x894000, 0x890000, "sec_pka", true, true},
197 /* SEC KDF RGF 3096b */
198 {0x898000, 0x898c18, 0x898000, "sec_kdf_rgf", true, true},
200 {0x89a000, 0x89a84c, 0x89a000, "sec_main", true, true},
202 {0x8a0000, 0x8a1000, 0x8a0000, "otp", true, false},
203 /* DMA EXT RGF 64k */
204 {0x8b0000, 0x8c0000, 0x8b0000, "dma_ext_rgf", true, true},
205 /* DUM USER RGF 528b */
206 {0x8c0000, 0x8c0210, 0x8c0000, "dum_user_rgf", true, true},
208 {0x8c2000, 0x8c2128, 0x8c2000, "dma_ofu", true, true},
210 {0x8c3000, 0x8c4000, 0x8c3000, "ucode_debug", true, true},
211 /* upper area 1536k */
212 {0x900000, 0xa80000, 0x900000, "upper", true, true},
213 /* UCODE areas - accessible by debugfs blobs but not by
214 * wmi_addr_remap. UCODE areas MUST be added AFTER FW areas!
216 /* ucode code RAM 256k */
217 {0x000000, 0x040000, 0xa38000, "uc_code", false, false},
218 /* ucode data RAM 32k */
219 {0x800000, 0x808000, 0xa78000, "uc_data", false, false},
222 struct fw_map fw_mapping[MAX_FW_MAPPING_TABLE_SIZE];
224 struct blink_on_off_time led_blink_time[] = {
225 {WIL_LED_BLINK_ON_SLOW_MS, WIL_LED_BLINK_OFF_SLOW_MS},
226 {WIL_LED_BLINK_ON_MED_MS, WIL_LED_BLINK_OFF_MED_MS},
227 {WIL_LED_BLINK_ON_FAST_MS, WIL_LED_BLINK_OFF_FAST_MS},
232 __le16 auth_transaction;
234 /* possibly followed by Challenge text */
238 u8 led_polarity = LED_POLARITY_LOW_ACTIVE;
241 * return AHB address for given firmware internal (linker) address
242 * @x - internal address
243 * If address have no valid AHB mapping, return 0
245 static u32 wmi_addr_remap(u32 x)
249 for (i = 0; i < ARRAY_SIZE(fw_mapping); i++) {
250 if (fw_mapping[i].fw &&
251 ((x >= fw_mapping[i].from) && (x < fw_mapping[i].to)))
252 return x + fw_mapping[i].host - fw_mapping[i].from;
259 * find fw_mapping entry by section name
260 * @section - section name
262 * Return pointer to section or NULL if not found
264 struct fw_map *wil_find_fw_mapping(const char *section)
268 for (i = 0; i < ARRAY_SIZE(fw_mapping); i++)
269 if (fw_mapping[i].name &&
270 !strcmp(section, fw_mapping[i].name))
271 return &fw_mapping[i];
277 * Check address validity for WMI buffer; remap if needed
278 * @ptr - internal (linker) fw/ucode address
279 * @size - if non zero, validate the block does not
280 * exceed the device memory (bar)
282 * Valid buffer should be DWORD aligned
284 * return address for accessing buffer from the host;
285 * if buffer is not valid, return NULL.
287 void __iomem *wmi_buffer_block(struct wil6210_priv *wil, __le32 ptr_, u32 size)
290 u32 ptr = le32_to_cpu(ptr_);
295 ptr = wmi_addr_remap(ptr);
296 if (ptr < WIL6210_FW_HOST_OFF)
300 if (off > wil->bar_size - 4)
302 if (size && ((off + size > wil->bar_size) || (off + size < off)))
305 return wil->csr + off;
308 void __iomem *wmi_buffer(struct wil6210_priv *wil, __le32 ptr_)
310 return wmi_buffer_block(wil, ptr_, 0);
314 * Check address validity
316 void __iomem *wmi_addr(struct wil6210_priv *wil, u32 ptr)
323 if (ptr < WIL6210_FW_HOST_OFF)
327 if (off > wil->bar_size - 4)
330 return wil->csr + off;
333 int wmi_read_hdr(struct wil6210_priv *wil, __le32 ptr,
334 struct wil6210_mbox_hdr *hdr)
336 void __iomem *src = wmi_buffer(wil, ptr);
341 wil_memcpy_fromio_32(hdr, src, sizeof(*hdr));
346 static const char *cmdid2name(u16 cmdid)
349 case WMI_NOTIFY_REQ_CMDID:
350 return "WMI_NOTIFY_REQ_CMD";
351 case WMI_START_SCAN_CMDID:
352 return "WMI_START_SCAN_CMD";
353 case WMI_CONNECT_CMDID:
354 return "WMI_CONNECT_CMD";
355 case WMI_DISCONNECT_CMDID:
356 return "WMI_DISCONNECT_CMD";
357 case WMI_SW_TX_REQ_CMDID:
358 return "WMI_SW_TX_REQ_CMD";
359 case WMI_GET_RF_SECTOR_PARAMS_CMDID:
360 return "WMI_GET_RF_SECTOR_PARAMS_CMD";
361 case WMI_SET_RF_SECTOR_PARAMS_CMDID:
362 return "WMI_SET_RF_SECTOR_PARAMS_CMD";
363 case WMI_GET_SELECTED_RF_SECTOR_INDEX_CMDID:
364 return "WMI_GET_SELECTED_RF_SECTOR_INDEX_CMD";
365 case WMI_SET_SELECTED_RF_SECTOR_INDEX_CMDID:
366 return "WMI_SET_SELECTED_RF_SECTOR_INDEX_CMD";
367 case WMI_BRP_SET_ANT_LIMIT_CMDID:
368 return "WMI_BRP_SET_ANT_LIMIT_CMD";
369 case WMI_TOF_SESSION_START_CMDID:
370 return "WMI_TOF_SESSION_START_CMD";
371 case WMI_AOA_MEAS_CMDID:
372 return "WMI_AOA_MEAS_CMD";
374 return "WMI_PMC_CMD";
375 case WMI_TOF_GET_TX_RX_OFFSET_CMDID:
376 return "WMI_TOF_GET_TX_RX_OFFSET_CMD";
377 case WMI_TOF_SET_TX_RX_OFFSET_CMDID:
378 return "WMI_TOF_SET_TX_RX_OFFSET_CMD";
379 case WMI_VRING_CFG_CMDID:
380 return "WMI_VRING_CFG_CMD";
381 case WMI_BCAST_VRING_CFG_CMDID:
382 return "WMI_BCAST_VRING_CFG_CMD";
383 case WMI_TRAFFIC_SUSPEND_CMDID:
384 return "WMI_TRAFFIC_SUSPEND_CMD";
385 case WMI_TRAFFIC_RESUME_CMDID:
386 return "WMI_TRAFFIC_RESUME_CMD";
388 return "WMI_ECHO_CMD";
389 case WMI_SET_MAC_ADDRESS_CMDID:
390 return "WMI_SET_MAC_ADDRESS_CMD";
391 case WMI_LED_CFG_CMDID:
392 return "WMI_LED_CFG_CMD";
393 case WMI_PCP_START_CMDID:
394 return "WMI_PCP_START_CMD";
395 case WMI_PCP_STOP_CMDID:
396 return "WMI_PCP_STOP_CMD";
397 case WMI_SET_SSID_CMDID:
398 return "WMI_SET_SSID_CMD";
399 case WMI_GET_SSID_CMDID:
400 return "WMI_GET_SSID_CMD";
401 case WMI_SET_PCP_CHANNEL_CMDID:
402 return "WMI_SET_PCP_CHANNEL_CMD";
403 case WMI_GET_PCP_CHANNEL_CMDID:
404 return "WMI_GET_PCP_CHANNEL_CMD";
405 case WMI_P2P_CFG_CMDID:
406 return "WMI_P2P_CFG_CMD";
407 case WMI_PORT_ALLOCATE_CMDID:
408 return "WMI_PORT_ALLOCATE_CMD";
409 case WMI_PORT_DELETE_CMDID:
410 return "WMI_PORT_DELETE_CMD";
411 case WMI_START_LISTEN_CMDID:
412 return "WMI_START_LISTEN_CMD";
413 case WMI_START_SEARCH_CMDID:
414 return "WMI_START_SEARCH_CMD";
415 case WMI_DISCOVERY_STOP_CMDID:
416 return "WMI_DISCOVERY_STOP_CMD";
417 case WMI_DELETE_CIPHER_KEY_CMDID:
418 return "WMI_DELETE_CIPHER_KEY_CMD";
419 case WMI_ADD_CIPHER_KEY_CMDID:
420 return "WMI_ADD_CIPHER_KEY_CMD";
421 case WMI_SET_APPIE_CMDID:
422 return "WMI_SET_APPIE_CMD";
423 case WMI_CFG_RX_CHAIN_CMDID:
424 return "WMI_CFG_RX_CHAIN_CMD";
425 case WMI_TEMP_SENSE_CMDID:
426 return "WMI_TEMP_SENSE_CMD";
427 case WMI_DEL_STA_CMDID:
428 return "WMI_DEL_STA_CMD";
429 case WMI_DISCONNECT_STA_CMDID:
430 return "WMI_DISCONNECT_STA_CMD";
431 case WMI_RING_BA_EN_CMDID:
432 return "WMI_RING_BA_EN_CMD";
433 case WMI_RING_BA_DIS_CMDID:
434 return "WMI_RING_BA_DIS_CMD";
435 case WMI_RCP_DELBA_CMDID:
436 return "WMI_RCP_DELBA_CMD";
437 case WMI_RCP_ADDBA_RESP_CMDID:
438 return "WMI_RCP_ADDBA_RESP_CMD";
439 case WMI_RCP_ADDBA_RESP_EDMA_CMDID:
440 return "WMI_RCP_ADDBA_RESP_EDMA_CMD";
441 case WMI_PS_DEV_PROFILE_CFG_CMDID:
442 return "WMI_PS_DEV_PROFILE_CFG_CMD";
443 case WMI_SET_MGMT_RETRY_LIMIT_CMDID:
444 return "WMI_SET_MGMT_RETRY_LIMIT_CMD";
445 case WMI_GET_MGMT_RETRY_LIMIT_CMDID:
446 return "WMI_GET_MGMT_RETRY_LIMIT_CMD";
447 case WMI_ABORT_SCAN_CMDID:
448 return "WMI_ABORT_SCAN_CMD";
449 case WMI_NEW_STA_CMDID:
450 return "WMI_NEW_STA_CMD";
451 case WMI_SET_THERMAL_THROTTLING_CFG_CMDID:
452 return "WMI_SET_THERMAL_THROTTLING_CFG_CMD";
453 case WMI_GET_THERMAL_THROTTLING_CFG_CMDID:
454 return "WMI_GET_THERMAL_THROTTLING_CFG_CMD";
455 case WMI_LINK_MAINTAIN_CFG_WRITE_CMDID:
456 return "WMI_LINK_MAINTAIN_CFG_WRITE_CMD";
457 case WMI_LO_POWER_CALIB_FROM_OTP_CMDID:
458 return "WMI_LO_POWER_CALIB_FROM_OTP_CMD";
459 case WMI_START_SCHED_SCAN_CMDID:
460 return "WMI_START_SCHED_SCAN_CMD";
461 case WMI_STOP_SCHED_SCAN_CMDID:
462 return "WMI_STOP_SCHED_SCAN_CMD";
463 case WMI_TX_STATUS_RING_ADD_CMDID:
464 return "WMI_TX_STATUS_RING_ADD_CMD";
465 case WMI_RX_STATUS_RING_ADD_CMDID:
466 return "WMI_RX_STATUS_RING_ADD_CMD";
467 case WMI_TX_DESC_RING_ADD_CMDID:
468 return "WMI_TX_DESC_RING_ADD_CMD";
469 case WMI_RX_DESC_RING_ADD_CMDID:
470 return "WMI_RX_DESC_RING_ADD_CMD";
471 case WMI_BCAST_DESC_RING_ADD_CMDID:
472 return "WMI_BCAST_DESC_RING_ADD_CMD";
473 case WMI_CFG_DEF_RX_OFFLOAD_CMDID:
474 return "WMI_CFG_DEF_RX_OFFLOAD_CMD";
475 case WMI_LINK_STATS_CMDID:
476 return "WMI_LINK_STATS_CMD";
477 case WMI_SW_TX_REQ_EXT_CMDID:
478 return "WMI_SW_TX_REQ_EXT_CMDID";
479 case WMI_FT_AUTH_CMDID:
480 return "WMI_FT_AUTH_CMD";
481 case WMI_FT_REASSOC_CMDID:
482 return "WMI_FT_REASSOC_CMD";
483 case WMI_UPDATE_FT_IES_CMDID:
484 return "WMI_UPDATE_FT_IES_CMD";
486 return "Untracked CMD";
490 static const char *eventid2name(u16 eventid)
493 case WMI_NOTIFY_REQ_DONE_EVENTID:
494 return "WMI_NOTIFY_REQ_DONE_EVENT";
495 case WMI_DISCONNECT_EVENTID:
496 return "WMI_DISCONNECT_EVENT";
497 case WMI_SW_TX_COMPLETE_EVENTID:
498 return "WMI_SW_TX_COMPLETE_EVENT";
499 case WMI_GET_RF_SECTOR_PARAMS_DONE_EVENTID:
500 return "WMI_GET_RF_SECTOR_PARAMS_DONE_EVENT";
501 case WMI_SET_RF_SECTOR_PARAMS_DONE_EVENTID:
502 return "WMI_SET_RF_SECTOR_PARAMS_DONE_EVENT";
503 case WMI_GET_SELECTED_RF_SECTOR_INDEX_DONE_EVENTID:
504 return "WMI_GET_SELECTED_RF_SECTOR_INDEX_DONE_EVENT";
505 case WMI_SET_SELECTED_RF_SECTOR_INDEX_DONE_EVENTID:
506 return "WMI_SET_SELECTED_RF_SECTOR_INDEX_DONE_EVENT";
507 case WMI_BRP_SET_ANT_LIMIT_EVENTID:
508 return "WMI_BRP_SET_ANT_LIMIT_EVENT";
509 case WMI_FW_READY_EVENTID:
510 return "WMI_FW_READY_EVENT";
511 case WMI_TRAFFIC_RESUME_EVENTID:
512 return "WMI_TRAFFIC_RESUME_EVENT";
513 case WMI_TOF_GET_TX_RX_OFFSET_EVENTID:
514 return "WMI_TOF_GET_TX_RX_OFFSET_EVENT";
515 case WMI_TOF_SET_TX_RX_OFFSET_EVENTID:
516 return "WMI_TOF_SET_TX_RX_OFFSET_EVENT";
517 case WMI_VRING_CFG_DONE_EVENTID:
518 return "WMI_VRING_CFG_DONE_EVENT";
519 case WMI_READY_EVENTID:
520 return "WMI_READY_EVENT";
521 case WMI_RX_MGMT_PACKET_EVENTID:
522 return "WMI_RX_MGMT_PACKET_EVENT";
523 case WMI_TX_MGMT_PACKET_EVENTID:
524 return "WMI_TX_MGMT_PACKET_EVENT";
525 case WMI_SCAN_COMPLETE_EVENTID:
526 return "WMI_SCAN_COMPLETE_EVENT";
527 case WMI_ACS_PASSIVE_SCAN_COMPLETE_EVENTID:
528 return "WMI_ACS_PASSIVE_SCAN_COMPLETE_EVENT";
529 case WMI_CONNECT_EVENTID:
530 return "WMI_CONNECT_EVENT";
531 case WMI_EAPOL_RX_EVENTID:
532 return "WMI_EAPOL_RX_EVENT";
533 case WMI_BA_STATUS_EVENTID:
534 return "WMI_BA_STATUS_EVENT";
535 case WMI_RCP_ADDBA_REQ_EVENTID:
536 return "WMI_RCP_ADDBA_REQ_EVENT";
537 case WMI_DELBA_EVENTID:
538 return "WMI_DELBA_EVENT";
539 case WMI_RING_EN_EVENTID:
540 return "WMI_RING_EN_EVENT";
541 case WMI_DATA_PORT_OPEN_EVENTID:
542 return "WMI_DATA_PORT_OPEN_EVENT";
543 case WMI_AOA_MEAS_EVENTID:
544 return "WMI_AOA_MEAS_EVENT";
545 case WMI_TOF_SESSION_END_EVENTID:
546 return "WMI_TOF_SESSION_END_EVENT";
547 case WMI_TOF_GET_CAPABILITIES_EVENTID:
548 return "WMI_TOF_GET_CAPABILITIES_EVENT";
549 case WMI_TOF_SET_LCR_EVENTID:
550 return "WMI_TOF_SET_LCR_EVENT";
551 case WMI_TOF_SET_LCI_EVENTID:
552 return "WMI_TOF_SET_LCI_EVENT";
553 case WMI_TOF_FTM_PER_DEST_RES_EVENTID:
554 return "WMI_TOF_FTM_PER_DEST_RES_EVENT";
555 case WMI_TOF_CHANNEL_INFO_EVENTID:
556 return "WMI_TOF_CHANNEL_INFO_EVENT";
557 case WMI_TRAFFIC_SUSPEND_EVENTID:
558 return "WMI_TRAFFIC_SUSPEND_EVENT";
559 case WMI_ECHO_RSP_EVENTID:
560 return "WMI_ECHO_RSP_EVENT";
561 case WMI_LED_CFG_DONE_EVENTID:
562 return "WMI_LED_CFG_DONE_EVENT";
563 case WMI_PCP_STARTED_EVENTID:
564 return "WMI_PCP_STARTED_EVENT";
565 case WMI_PCP_STOPPED_EVENTID:
566 return "WMI_PCP_STOPPED_EVENT";
567 case WMI_GET_SSID_EVENTID:
568 return "WMI_GET_SSID_EVENT";
569 case WMI_GET_PCP_CHANNEL_EVENTID:
570 return "WMI_GET_PCP_CHANNEL_EVENT";
571 case WMI_P2P_CFG_DONE_EVENTID:
572 return "WMI_P2P_CFG_DONE_EVENT";
573 case WMI_PORT_ALLOCATED_EVENTID:
574 return "WMI_PORT_ALLOCATED_EVENT";
575 case WMI_PORT_DELETED_EVENTID:
576 return "WMI_PORT_DELETED_EVENT";
577 case WMI_LISTEN_STARTED_EVENTID:
578 return "WMI_LISTEN_STARTED_EVENT";
579 case WMI_SEARCH_STARTED_EVENTID:
580 return "WMI_SEARCH_STARTED_EVENT";
581 case WMI_DISCOVERY_STOPPED_EVENTID:
582 return "WMI_DISCOVERY_STOPPED_EVENT";
583 case WMI_CFG_RX_CHAIN_DONE_EVENTID:
584 return "WMI_CFG_RX_CHAIN_DONE_EVENT";
585 case WMI_TEMP_SENSE_DONE_EVENTID:
586 return "WMI_TEMP_SENSE_DONE_EVENT";
587 case WMI_RCP_ADDBA_RESP_SENT_EVENTID:
588 return "WMI_RCP_ADDBA_RESP_SENT_EVENT";
589 case WMI_PS_DEV_PROFILE_CFG_EVENTID:
590 return "WMI_PS_DEV_PROFILE_CFG_EVENT";
591 case WMI_SET_MGMT_RETRY_LIMIT_EVENTID:
592 return "WMI_SET_MGMT_RETRY_LIMIT_EVENT";
593 case WMI_GET_MGMT_RETRY_LIMIT_EVENTID:
594 return "WMI_GET_MGMT_RETRY_LIMIT_EVENT";
595 case WMI_SET_THERMAL_THROTTLING_CFG_EVENTID:
596 return "WMI_SET_THERMAL_THROTTLING_CFG_EVENT";
597 case WMI_GET_THERMAL_THROTTLING_CFG_EVENTID:
598 return "WMI_GET_THERMAL_THROTTLING_CFG_EVENT";
599 case WMI_LINK_MAINTAIN_CFG_WRITE_DONE_EVENTID:
600 return "WMI_LINK_MAINTAIN_CFG_WRITE_DONE_EVENT";
601 case WMI_LO_POWER_CALIB_FROM_OTP_EVENTID:
602 return "WMI_LO_POWER_CALIB_FROM_OTP_EVENT";
603 case WMI_START_SCHED_SCAN_EVENTID:
604 return "WMI_START_SCHED_SCAN_EVENT";
605 case WMI_STOP_SCHED_SCAN_EVENTID:
606 return "WMI_STOP_SCHED_SCAN_EVENT";
607 case WMI_SCHED_SCAN_RESULT_EVENTID:
608 return "WMI_SCHED_SCAN_RESULT_EVENT";
609 case WMI_TX_STATUS_RING_CFG_DONE_EVENTID:
610 return "WMI_TX_STATUS_RING_CFG_DONE_EVENT";
611 case WMI_RX_STATUS_RING_CFG_DONE_EVENTID:
612 return "WMI_RX_STATUS_RING_CFG_DONE_EVENT";
613 case WMI_TX_DESC_RING_CFG_DONE_EVENTID:
614 return "WMI_TX_DESC_RING_CFG_DONE_EVENT";
615 case WMI_RX_DESC_RING_CFG_DONE_EVENTID:
616 return "WMI_RX_DESC_RING_CFG_DONE_EVENT";
617 case WMI_CFG_DEF_RX_OFFLOAD_DONE_EVENTID:
618 return "WMI_CFG_DEF_RX_OFFLOAD_DONE_EVENT";
619 case WMI_LINK_STATS_CONFIG_DONE_EVENTID:
620 return "WMI_LINK_STATS_CONFIG_DONE_EVENT";
621 case WMI_LINK_STATS_EVENTID:
622 return "WMI_LINK_STATS_EVENT";
623 case WMI_COMMAND_NOT_SUPPORTED_EVENTID:
624 return "WMI_COMMAND_NOT_SUPPORTED_EVENT";
625 case WMI_FT_AUTH_STATUS_EVENTID:
626 return "WMI_FT_AUTH_STATUS_EVENT";
627 case WMI_FT_REASSOC_STATUS_EVENTID:
628 return "WMI_FT_REASSOC_STATUS_EVENT";
630 return "Untracked EVENT";
634 static int __wmi_send(struct wil6210_priv *wil, u16 cmdid, u8 mid,
638 struct wil6210_mbox_hdr hdr;
639 struct wmi_cmd_hdr wmi;
642 .type = WIL_MBOX_HDR_TYPE_WMI,
644 .len = cpu_to_le16(sizeof(cmd.wmi) + len),
648 .command_id = cpu_to_le16(cmdid),
651 struct wil6210_mbox_ring *r = &wil->mbox_ctl.tx;
652 struct wil6210_mbox_ring_desc d_head;
655 void __iomem *head = wmi_addr(wil, r->head);
659 if (len > r->entry_size - sizeof(cmd)) {
660 wil_err(wil, "WMI size too large: %d bytes, max is %d\n",
661 (int)(sizeof(cmd) + len), r->entry_size);
667 if (!test_bit(wil_status_fwready, wil->status)) {
668 wil_err(wil, "WMI: cannot send command while FW not ready\n");
672 /* Allow sending only suspend / resume commands during susepnd flow */
673 if ((test_bit(wil_status_suspending, wil->status) ||
674 test_bit(wil_status_suspended, wil->status) ||
675 test_bit(wil_status_resuming, wil->status)) &&
676 ((cmdid != WMI_TRAFFIC_SUSPEND_CMDID) &&
677 (cmdid != WMI_TRAFFIC_RESUME_CMDID))) {
678 wil_err(wil, "WMI: reject send_command during suspend\n");
683 wil_err(wil, "WMI head is garbage: 0x%08x\n", r->head);
689 /* read Tx head till it is not busy */
690 for (retry = 5; retry > 0; retry--) {
691 wil_memcpy_fromio_32(&d_head, head, sizeof(d_head));
692 if (d_head.sync == 0)
696 if (d_head.sync != 0) {
697 wil_err(wil, "WMI head busy\n");
702 next_head = r->base + ((r->head - r->base + sizeof(d_head)) % r->size);
703 wil_dbg_wmi(wil, "Head 0x%08x -> 0x%08x\n", r->head, next_head);
704 /* wait till FW finish with previous command */
705 for (retry = 5; retry > 0; retry--) {
706 if (!test_bit(wil_status_fwready, wil->status)) {
707 wil_err(wil, "WMI: cannot send command while FW not ready\n");
711 r->tail = wil_r(wil, RGF_MBOX +
712 offsetof(struct wil6210_mbox_ctl, tx.tail));
713 if (next_head != r->tail)
717 if (next_head == r->tail) {
718 wil_err(wil, "WMI ring full\n");
722 dst = wmi_buffer(wil, d_head.addr);
724 wil_err(wil, "invalid WMI buffer: 0x%08x\n",
725 le32_to_cpu(d_head.addr));
729 cmd.hdr.seq = cpu_to_le16(++wil->wmi_seq);
731 wil_dbg_wmi(wil, "sending %s (0x%04x) [%d] mid %d\n",
732 cmdid2name(cmdid), cmdid, len, mid);
733 wil_hex_dump_wmi("Cmd ", DUMP_PREFIX_OFFSET, 16, 1, &cmd,
735 wil_hex_dump_wmi("cmd ", DUMP_PREFIX_OFFSET, 16, 1, buf,
737 wil_memcpy_toio_32(dst, &cmd, sizeof(cmd));
738 wil_memcpy_toio_32(dst + sizeof(cmd), buf, len);
739 /* mark entry as full */
740 wil_w(wil, r->head + offsetof(struct wil6210_mbox_ring_desc, sync), 1);
741 /* advance next ptr */
742 wil_w(wil, RGF_MBOX + offsetof(struct wil6210_mbox_ctl, tx.head),
743 r->head = next_head);
745 trace_wil6210_wmi_cmd(&cmd.wmi, buf, len);
747 /* interrupt to FW */
748 wil_w(wil, RGF_USER_USER_ICR + offsetof(struct RGF_ICR, ICS),
752 wil_halp_unvote(wil);
756 int wmi_send(struct wil6210_priv *wil, u16 cmdid, u8 mid, void *buf, u16 len)
760 mutex_lock(&wil->wmi_mutex);
761 rc = __wmi_send(wil, cmdid, mid, buf, len);
762 mutex_unlock(&wil->wmi_mutex);
767 /*=== Event handlers ===*/
768 static void wmi_evt_ready(struct wil6210_vif *vif, int id, void *d, int len)
770 struct wil6210_priv *wil = vif_to_wil(vif);
771 struct wiphy *wiphy = wil_to_wiphy(wil);
772 struct wmi_ready_event *evt = d;
774 wil_info(wil, "FW ver. %s(SW %d); MAC %pM; %d MID's\n",
775 wil->fw_version, le32_to_cpu(evt->sw_version),
776 evt->mac, evt->numof_additional_mids);
777 if (evt->numof_additional_mids + 1 < wil->max_vifs) {
778 wil_err(wil, "FW does not support enough MIDs (need %d)",
780 return; /* FW load will fail after timeout */
782 /* ignore MAC address, we already have it from the boot loader */
783 strlcpy(wiphy->fw_version, wil->fw_version, sizeof(wiphy->fw_version));
785 if (len > offsetof(struct wmi_ready_event, rfc_read_calib_result)) {
786 wil_dbg_wmi(wil, "rfc calibration result %d\n",
787 evt->rfc_read_calib_result);
788 wil->fw_calib_result = evt->rfc_read_calib_result;
790 wil_set_recovery_state(wil, fw_recovery_idle);
791 set_bit(wil_status_fwready, wil->status);
792 /* let the reset sequence continue */
793 complete(&wil->wmi_ready);
796 static void wmi_evt_rx_mgmt(struct wil6210_vif *vif, int id, void *d, int len)
798 struct wil6210_priv *wil = vif_to_wil(vif);
799 struct wmi_rx_mgmt_packet_event *data = d;
800 struct wiphy *wiphy = wil_to_wiphy(wil);
801 struct ieee80211_mgmt *rx_mgmt_frame =
802 (struct ieee80211_mgmt *)data->payload;
803 int flen = len - offsetof(struct wmi_rx_mgmt_packet_event, payload);
806 struct ieee80211_channel *channel;
813 wil_err(wil, "MGMT Rx: short event, len %d\n", len);
817 d_len = le32_to_cpu(data->info.len);
820 "MGMT Rx: length mismatch, d_len %d should be %d\n",
825 ch_no = data->info.channel + 1;
826 freq = ieee80211_channel_to_frequency(ch_no, NL80211_BAND_60GHZ);
827 channel = ieee80211_get_channel(wiphy, freq);
828 if (test_bit(WMI_FW_CAPABILITY_RSSI_REPORTING, wil->fw_capabilities))
829 signal = 100 * data->info.rssi;
831 signal = data->info.sqi;
832 d_status = le16_to_cpu(data->info.status);
833 fc = rx_mgmt_frame->frame_control;
835 wil_dbg_wmi(wil, "MGMT Rx: channel %d MCS %d RSSI %d SQI %d%%\n",
836 data->info.channel, data->info.mcs, data->info.rssi,
838 wil_dbg_wmi(wil, "status 0x%04x len %d fc 0x%04x\n", d_status, d_len,
840 wil_dbg_wmi(wil, "qid %d mid %d cid %d\n",
841 data->info.qid, data->info.mid, data->info.cid);
842 wil_hex_dump_wmi("MGMT Rx ", DUMP_PREFIX_OFFSET, 16, 1, rx_mgmt_frame,
846 wil_err(wil, "Frame on unsupported channel\n");
850 if (ieee80211_is_beacon(fc) || ieee80211_is_probe_resp(fc)) {
851 struct cfg80211_bss *bss;
852 u64 tsf = le64_to_cpu(rx_mgmt_frame->u.beacon.timestamp);
853 u16 cap = le16_to_cpu(rx_mgmt_frame->u.beacon.capab_info);
854 u16 bi = le16_to_cpu(rx_mgmt_frame->u.beacon.beacon_int);
855 const u8 *ie_buf = rx_mgmt_frame->u.beacon.variable;
856 size_t ie_len = d_len - offsetof(struct ieee80211_mgmt,
858 wil_dbg_wmi(wil, "Capability info : 0x%04x\n", cap);
859 wil_dbg_wmi(wil, "TSF : 0x%016llx\n", tsf);
860 wil_dbg_wmi(wil, "Beacon interval : %d\n", bi);
861 wil_hex_dump_wmi("IE ", DUMP_PREFIX_OFFSET, 16, 1, ie_buf,
864 wil_dbg_wmi(wil, "Capability info : 0x%04x\n", cap);
866 bss = cfg80211_inform_bss_frame(wiphy, channel, rx_mgmt_frame,
867 d_len, signal, GFP_KERNEL);
869 wil_dbg_wmi(wil, "Added BSS %pM\n",
870 rx_mgmt_frame->bssid);
871 cfg80211_put_bss(wiphy, bss);
873 wil_err(wil, "cfg80211_inform_bss_frame() failed\n");
876 mutex_lock(&wil->vif_mutex);
877 cfg80211_rx_mgmt(vif_to_radio_wdev(wil, vif), freq, signal,
878 (void *)rx_mgmt_frame, d_len, 0);
879 mutex_unlock(&wil->vif_mutex);
883 static void wmi_evt_tx_mgmt(struct wil6210_vif *vif, int id, void *d, int len)
885 struct wmi_tx_mgmt_packet_event *data = d;
886 struct ieee80211_mgmt *mgmt_frame =
887 (struct ieee80211_mgmt *)data->payload;
888 int flen = len - offsetof(struct wmi_tx_mgmt_packet_event, payload);
890 wil_hex_dump_wmi("MGMT Tx ", DUMP_PREFIX_OFFSET, 16, 1, mgmt_frame,
894 static void wmi_evt_scan_complete(struct wil6210_vif *vif, int id,
897 struct wil6210_priv *wil = vif_to_wil(vif);
899 mutex_lock(&wil->vif_mutex);
900 if (vif->scan_request) {
901 struct wmi_scan_complete_event *data = d;
902 int status = le32_to_cpu(data->status);
903 struct cfg80211_scan_info info = {
904 .aborted = ((status != WMI_SCAN_SUCCESS) &&
905 (status != WMI_SCAN_ABORT_REJECTED)),
908 wil_dbg_wmi(wil, "SCAN_COMPLETE(0x%08x)\n", status);
909 wil_dbg_misc(wil, "Complete scan_request 0x%p aborted %d\n",
910 vif->scan_request, info.aborted);
911 del_timer_sync(&vif->scan_timer);
912 cfg80211_scan_done(vif->scan_request, &info);
914 wil->radio_wdev = wil->main_ndev->ieee80211_ptr;
915 vif->scan_request = NULL;
916 wake_up_interruptible(&wil->wq);
917 if (vif->p2p.pending_listen_wdev) {
918 wil_dbg_misc(wil, "Scheduling delayed listen\n");
919 schedule_work(&vif->p2p.delayed_listen_work);
922 wil_err(wil, "SCAN_COMPLETE while not scanning\n");
924 mutex_unlock(&wil->vif_mutex);
927 static void wmi_evt_connect(struct wil6210_vif *vif, int id, void *d, int len)
929 struct wil6210_priv *wil = vif_to_wil(vif);
930 struct net_device *ndev = vif_to_ndev(vif);
931 struct wireless_dev *wdev = vif_to_wdev(vif);
932 struct wmi_connect_event *evt = d;
933 int ch; /* channel number */
934 struct station_info *sinfo;
935 u8 *assoc_req_ie, *assoc_resp_ie;
936 size_t assoc_req_ielen, assoc_resp_ielen;
937 /* capinfo(u16) + listen_interval(u16) + IEs */
938 const size_t assoc_req_ie_offset = sizeof(u16) * 2;
939 /* capinfo(u16) + status_code(u16) + associd(u16) + IEs */
940 const size_t assoc_resp_ie_offset = sizeof(u16) * 3;
943 if (len < sizeof(*evt)) {
944 wil_err(wil, "Connect event too short : %d bytes\n", len);
947 if (len != sizeof(*evt) + evt->beacon_ie_len + evt->assoc_req_len +
948 evt->assoc_resp_len) {
950 "Connect event corrupted : %d != %d + %d + %d + %d\n",
951 len, (int)sizeof(*evt), evt->beacon_ie_len,
952 evt->assoc_req_len, evt->assoc_resp_len);
955 if (evt->cid >= WIL6210_MAX_CID) {
956 wil_err(wil, "Connect CID invalid : %d\n", evt->cid);
960 ch = evt->channel + 1;
961 wil_info(wil, "Connect %pM channel [%d] cid %d aid %d\n",
962 evt->bssid, ch, evt->cid, evt->aid);
963 wil_hex_dump_wmi("connect AI : ", DUMP_PREFIX_OFFSET, 16, 1,
964 evt->assoc_info, len - sizeof(*evt), true);
966 /* figure out IE's */
967 assoc_req_ie = &evt->assoc_info[evt->beacon_ie_len +
968 assoc_req_ie_offset];
969 assoc_req_ielen = evt->assoc_req_len - assoc_req_ie_offset;
970 if (evt->assoc_req_len <= assoc_req_ie_offset) {
975 assoc_resp_ie = &evt->assoc_info[evt->beacon_ie_len +
977 assoc_resp_ie_offset];
978 assoc_resp_ielen = evt->assoc_resp_len - assoc_resp_ie_offset;
979 if (evt->assoc_resp_len <= assoc_resp_ie_offset) {
980 assoc_resp_ie = NULL;
981 assoc_resp_ielen = 0;
984 if (test_bit(wil_status_resetting, wil->status) ||
985 !test_bit(wil_status_fwready, wil->status)) {
986 wil_err(wil, "status_resetting, cancel connect event, CID %d\n",
988 /* no need for cleanup, wil_reset will do that */
992 mutex_lock(&wil->mutex);
994 if ((wdev->iftype == NL80211_IFTYPE_STATION) ||
995 (wdev->iftype == NL80211_IFTYPE_P2P_CLIENT)) {
996 if (!test_bit(wil_vif_fwconnecting, vif->status)) {
997 wil_err(wil, "Not in connecting state\n");
998 mutex_unlock(&wil->mutex);
1001 del_timer_sync(&vif->connect_timer);
1002 } else if ((wdev->iftype == NL80211_IFTYPE_AP) ||
1003 (wdev->iftype == NL80211_IFTYPE_P2P_GO)) {
1004 if (wil->sta[evt->cid].status != wil_sta_unused) {
1005 wil_err(wil, "AP: Invalid status %d for CID %d\n",
1006 wil->sta[evt->cid].status, evt->cid);
1007 mutex_unlock(&wil->mutex);
1012 ether_addr_copy(wil->sta[evt->cid].addr, evt->bssid);
1013 wil->sta[evt->cid].mid = vif->mid;
1014 wil->sta[evt->cid].status = wil_sta_conn_pending;
1016 rc = wil_ring_init_tx(vif, evt->cid);
1018 wil_err(wil, "config tx vring failed for CID %d, rc (%d)\n",
1020 wmi_disconnect_sta(vif, wil->sta[evt->cid].addr,
1021 WLAN_REASON_UNSPECIFIED, false);
1023 wil_info(wil, "successful connection to CID %d\n", evt->cid);
1026 if ((wdev->iftype == NL80211_IFTYPE_STATION) ||
1027 (wdev->iftype == NL80211_IFTYPE_P2P_CLIENT)) {
1029 netif_carrier_off(ndev);
1030 wil6210_bus_request(wil, WIL_DEFAULT_BUS_REQUEST_KBPS);
1031 wil_err(wil, "cfg80211_connect_result with failure\n");
1032 cfg80211_connect_result(ndev, evt->bssid, NULL, 0,
1034 WLAN_STATUS_UNSPECIFIED_FAILURE,
1038 struct wiphy *wiphy = wil_to_wiphy(wil);
1040 cfg80211_ref_bss(wiphy, vif->bss);
1041 cfg80211_connect_bss(ndev, evt->bssid, vif->bss,
1042 assoc_req_ie, assoc_req_ielen,
1043 assoc_resp_ie, assoc_resp_ielen,
1044 WLAN_STATUS_SUCCESS, GFP_KERNEL,
1045 NL80211_TIMEOUT_UNSPECIFIED);
1048 } else if ((wdev->iftype == NL80211_IFTYPE_AP) ||
1049 (wdev->iftype == NL80211_IFTYPE_P2P_GO)) {
1053 /* notify new_sta has failed */
1054 cfg80211_del_sta(ndev, evt->bssid, GFP_KERNEL);
1058 sinfo = kzalloc(sizeof(*sinfo), GFP_KERNEL);
1064 sinfo->generation = wil->sinfo_gen++;
1067 sinfo->assoc_req_ies = assoc_req_ie;
1068 sinfo->assoc_req_ies_len = assoc_req_ielen;
1071 cfg80211_new_sta(ndev, evt->bssid, sinfo, GFP_KERNEL);
1075 wil_err(wil, "unhandled iftype %d for CID %d\n", wdev->iftype,
1080 wil->sta[evt->cid].status = wil_sta_connected;
1081 wil->sta[evt->cid].aid = evt->aid;
1082 if (!test_and_set_bit(wil_vif_fwconnected, vif->status))
1083 atomic_inc(&wil->connected_vifs);
1084 wil_update_net_queues_bh(wil, vif, NULL, false);
1088 wil->sta[evt->cid].status = wil_sta_unused;
1089 wil->sta[evt->cid].mid = U8_MAX;
1091 clear_bit(wil_vif_fwconnecting, vif->status);
1092 mutex_unlock(&wil->mutex);
1095 static void wmi_evt_disconnect(struct wil6210_vif *vif, int id,
1098 struct wil6210_priv *wil = vif_to_wil(vif);
1099 struct wmi_disconnect_event *evt = d;
1100 u16 reason_code = le16_to_cpu(evt->protocol_reason_status);
1102 wil_info(wil, "Disconnect %pM reason [proto %d wmi %d]\n",
1103 evt->bssid, reason_code, evt->disconnect_reason);
1107 if (test_bit(wil_status_resetting, wil->status) ||
1108 !test_bit(wil_status_fwready, wil->status)) {
1109 wil_err(wil, "status_resetting, cancel disconnect event\n");
1110 /* no need for cleanup, wil_reset will do that */
1114 mutex_lock(&wil->mutex);
1115 wil6210_disconnect_complete(vif, evt->bssid, reason_code);
1116 mutex_unlock(&wil->mutex);
1120 * Firmware reports EAPOL frame using WME event.
1121 * Reconstruct Ethernet frame and deliver it via normal Rx
1123 static void wmi_evt_eapol_rx(struct wil6210_vif *vif, int id, void *d, int len)
1125 struct wil6210_priv *wil = vif_to_wil(vif);
1126 struct net_device *ndev = vif_to_ndev(vif);
1127 struct wmi_eapol_rx_event *evt = d;
1128 u16 eapol_len = le16_to_cpu(evt->eapol_len);
1129 int sz = eapol_len + ETH_HLEN;
1130 struct sk_buff *skb;
1133 struct wil_net_stats *stats = NULL;
1135 wil_dbg_wmi(wil, "EAPOL len %d from %pM MID %d\n", eapol_len,
1136 evt->src_mac, vif->mid);
1138 cid = wil_find_cid(wil, vif->mid, evt->src_mac);
1140 stats = &wil->sta[cid].stats;
1142 if (eapol_len > 196) { /* TODO: revisit size limit */
1143 wil_err(wil, "EAPOL too large\n");
1147 skb = alloc_skb(sz, GFP_KERNEL);
1149 wil_err(wil, "Failed to allocate skb\n");
1153 eth = skb_put(skb, ETH_HLEN);
1154 ether_addr_copy(eth->h_dest, ndev->dev_addr);
1155 ether_addr_copy(eth->h_source, evt->src_mac);
1156 eth->h_proto = cpu_to_be16(ETH_P_PAE);
1157 skb_put_data(skb, evt->eapol, eapol_len);
1158 skb->protocol = eth_type_trans(skb, ndev);
1159 if (likely(netif_rx_ni(skb) == NET_RX_SUCCESS)) {
1160 ndev->stats.rx_packets++;
1161 ndev->stats.rx_bytes += sz;
1163 stats->rx_packets++;
1164 stats->rx_bytes += sz;
1167 ndev->stats.rx_dropped++;
1169 stats->rx_dropped++;
1173 static void wmi_evt_ring_en(struct wil6210_vif *vif, int id, void *d, int len)
1175 struct wil6210_priv *wil = vif_to_wil(vif);
1176 struct wmi_ring_en_event *evt = d;
1177 u8 vri = evt->ring_index;
1178 struct wireless_dev *wdev = vif_to_wdev(vif);
1179 struct wil_sta_info *sta;
1181 struct key_params params;
1183 wil_dbg_wmi(wil, "Enable vring %d MID %d\n", vri, vif->mid);
1185 if (vri >= ARRAY_SIZE(wil->ring_tx)) {
1186 wil_err(wil, "Enable for invalid vring %d\n", vri);
1190 if (wdev->iftype != NL80211_IFTYPE_AP || !disable_ap_sme ||
1191 test_bit(wil_vif_ft_roam, vif->status))
1192 /* in AP mode with disable_ap_sme that is not FT,
1193 * this is done by wil_cfg80211_change_station()
1195 wil->ring_tx_data[vri].dot1x_open = true;
1196 if (vri == vif->bcast_ring) /* no BA for bcast */
1199 cid = wil->ring2cid_tid[vri][0];
1200 if (!wil_cid_valid(cid)) {
1201 wil_err(wil, "invalid cid %d for vring %d\n", cid, vri);
1205 /* In FT mode we get key but not store it as it is received
1206 * before WMI_CONNECT_EVENT received from FW.
1207 * wil_set_crypto_rx is called here to reset the security PN
1209 sta = &wil->sta[cid];
1210 if (test_bit(wil_vif_ft_roam, vif->status)) {
1211 memset(¶ms, 0, sizeof(params));
1212 wil_set_crypto_rx(0, WMI_KEY_USE_PAIRWISE, sta, ¶ms);
1213 if (wdev->iftype != NL80211_IFTYPE_AP)
1214 clear_bit(wil_vif_ft_roam, vif->status);
1218 wil_addba_tx_request(wil, vri, agg_wsize);
1221 static void wmi_evt_ba_status(struct wil6210_vif *vif, int id,
1224 struct wil6210_priv *wil = vif_to_wil(vif);
1225 struct wmi_ba_status_event *evt = d;
1226 struct wil_ring_tx_data *txdata;
1228 wil_dbg_wmi(wil, "BACK[%d] %s {%d} timeout %d AMSDU%s\n",
1230 evt->status == WMI_BA_AGREED ? "OK" : "N/A",
1231 evt->agg_wsize, __le16_to_cpu(evt->ba_timeout),
1232 evt->amsdu ? "+" : "-");
1234 if (evt->ringid >= WIL6210_MAX_TX_RINGS) {
1235 wil_err(wil, "invalid ring id %d\n", evt->ringid);
1239 if (evt->status != WMI_BA_AGREED) {
1240 evt->ba_timeout = 0;
1245 txdata = &wil->ring_tx_data[evt->ringid];
1247 txdata->agg_timeout = le16_to_cpu(evt->ba_timeout);
1248 txdata->agg_wsize = evt->agg_wsize;
1249 txdata->agg_amsdu = evt->amsdu;
1250 txdata->addba_in_progress = false;
1253 static void wmi_evt_addba_rx_req(struct wil6210_vif *vif, int id,
1256 struct wil6210_priv *wil = vif_to_wil(vif);
1257 struct wmi_rcp_addba_req_event *evt = d;
1259 wil_addba_rx_request(wil, vif->mid, evt->cidxtid, evt->dialog_token,
1260 evt->ba_param_set, evt->ba_timeout,
1264 static void wmi_evt_delba(struct wil6210_vif *vif, int id, void *d, int len)
1265 __acquires(&sta->tid_rx_lock) __releases(&sta->tid_rx_lock)
1267 struct wil6210_priv *wil = vif_to_wil(vif);
1268 struct wmi_delba_event *evt = d;
1270 u16 reason = __le16_to_cpu(evt->reason);
1271 struct wil_sta_info *sta;
1272 struct wil_tid_ampdu_rx *r;
1275 parse_cidxtid(evt->cidxtid, &cid, &tid);
1276 wil_dbg_wmi(wil, "DELBA MID %d CID %d TID %d from %s reason %d\n",
1278 evt->from_initiator ? "originator" : "recipient",
1280 if (!evt->from_initiator) {
1282 /* find Tx vring it belongs to */
1283 for (i = 0; i < ARRAY_SIZE(wil->ring2cid_tid); i++) {
1284 if (wil->ring2cid_tid[i][0] == cid &&
1285 wil->ring2cid_tid[i][1] == tid) {
1286 struct wil_ring_tx_data *txdata =
1287 &wil->ring_tx_data[i];
1289 wil_dbg_wmi(wil, "DELBA Tx vring %d\n", i);
1290 txdata->agg_timeout = 0;
1291 txdata->agg_wsize = 0;
1292 txdata->addba_in_progress = false;
1294 break; /* max. 1 matching ring */
1297 if (i >= ARRAY_SIZE(wil->ring2cid_tid))
1298 wil_err(wil, "DELBA: unable to find Tx vring\n");
1302 sta = &wil->sta[cid];
1304 spin_lock_bh(&sta->tid_rx_lock);
1306 r = sta->tid_rx[tid];
1307 sta->tid_rx[tid] = NULL;
1308 wil_tid_ampdu_rx_free(wil, r);
1310 spin_unlock_bh(&sta->tid_rx_lock);
1314 wmi_evt_sched_scan_result(struct wil6210_vif *vif, int id, void *d, int len)
1316 struct wil6210_priv *wil = vif_to_wil(vif);
1317 struct wmi_sched_scan_result_event *data = d;
1318 struct wiphy *wiphy = wil_to_wiphy(wil);
1319 struct ieee80211_mgmt *rx_mgmt_frame =
1320 (struct ieee80211_mgmt *)data->payload;
1321 int flen = len - offsetof(struct wmi_sched_scan_result_event, payload);
1324 struct ieee80211_channel *channel;
1328 struct cfg80211_bss *bss;
1331 wil_err(wil, "sched scan result event too short, len %d\n",
1336 d_len = le32_to_cpu(data->info.len);
1337 if (d_len != flen) {
1339 "sched scan result length mismatch, d_len %d should be %d\n",
1344 fc = rx_mgmt_frame->frame_control;
1345 if (!ieee80211_is_probe_resp(fc)) {
1346 wil_err(wil, "sched scan result invalid frame, fc 0x%04x\n",
1351 ch_no = data->info.channel + 1;
1352 freq = ieee80211_channel_to_frequency(ch_no, NL80211_BAND_60GHZ);
1353 channel = ieee80211_get_channel(wiphy, freq);
1354 if (test_bit(WMI_FW_CAPABILITY_RSSI_REPORTING, wil->fw_capabilities))
1355 signal = 100 * data->info.rssi;
1357 signal = data->info.sqi;
1359 wil_dbg_wmi(wil, "sched scan result: channel %d MCS %d RSSI %d\n",
1360 data->info.channel, data->info.mcs, data->info.rssi);
1361 wil_dbg_wmi(wil, "len %d qid %d mid %d cid %d\n",
1362 d_len, data->info.qid, data->info.mid, data->info.cid);
1363 wil_hex_dump_wmi("PROBE ", DUMP_PREFIX_OFFSET, 16, 1, rx_mgmt_frame,
1367 wil_err(wil, "Frame on unsupported channel\n");
1371 bss = cfg80211_inform_bss_frame(wiphy, channel, rx_mgmt_frame,
1372 d_len, signal, GFP_KERNEL);
1374 wil_dbg_wmi(wil, "Added BSS %pM\n", rx_mgmt_frame->bssid);
1375 cfg80211_put_bss(wiphy, bss);
1377 wil_err(wil, "cfg80211_inform_bss_frame() failed\n");
1380 cfg80211_sched_scan_results(wiphy, 0);
1383 static void wil_link_stats_store_basic(struct wil6210_vif *vif,
1384 struct wmi_link_stats_basic *basic)
1386 struct wil6210_priv *wil = vif_to_wil(vif);
1387 u8 cid = basic->cid;
1388 struct wil_sta_info *sta;
1390 if (cid < 0 || cid >= WIL6210_MAX_CID) {
1391 wil_err(wil, "invalid cid %d\n", cid);
1395 sta = &wil->sta[cid];
1396 sta->fw_stats_basic = *basic;
1399 static void wil_link_stats_store_global(struct wil6210_vif *vif,
1400 struct wmi_link_stats_global *global)
1402 struct wil6210_priv *wil = vif_to_wil(vif);
1404 wil->fw_stats_global.stats = *global;
1407 static void wmi_link_stats_parse(struct wil6210_vif *vif, u64 tsf,
1408 bool has_next, void *payload,
1409 size_t payload_size)
1411 struct wil6210_priv *wil = vif_to_wil(vif);
1412 size_t hdr_size = sizeof(struct wmi_link_stats_record);
1413 size_t stats_size, record_size, expected_size;
1414 struct wmi_link_stats_record *hdr;
1416 if (payload_size < hdr_size) {
1417 wil_err(wil, "link stats wrong event size %zu\n", payload_size);
1421 while (payload_size >= hdr_size) {
1423 stats_size = le16_to_cpu(hdr->record_size);
1424 record_size = hdr_size + stats_size;
1426 if (payload_size < record_size) {
1427 wil_err(wil, "link stats payload ended unexpectedly, size %zu < %zu\n",
1428 payload_size, record_size);
1432 switch (hdr->record_type_id) {
1433 case WMI_LINK_STATS_TYPE_BASIC:
1434 expected_size = sizeof(struct wmi_link_stats_basic);
1435 if (stats_size < expected_size) {
1436 wil_err(wil, "link stats invalid basic record size %zu < %zu\n",
1437 stats_size, expected_size);
1440 if (vif->fw_stats_ready) {
1441 /* clean old statistics */
1442 vif->fw_stats_tsf = 0;
1443 vif->fw_stats_ready = 0;
1446 wil_link_stats_store_basic(vif, payload + hdr_size);
1449 vif->fw_stats_tsf = tsf;
1450 vif->fw_stats_ready = 1;
1454 case WMI_LINK_STATS_TYPE_GLOBAL:
1455 expected_size = sizeof(struct wmi_link_stats_global);
1456 if (stats_size < sizeof(struct wmi_link_stats_global)) {
1457 wil_err(wil, "link stats invalid global record size %zu < %zu\n",
1458 stats_size, expected_size);
1462 if (wil->fw_stats_global.ready) {
1463 /* clean old statistics */
1464 wil->fw_stats_global.tsf = 0;
1465 wil->fw_stats_global.ready = 0;
1468 wil_link_stats_store_global(vif, payload + hdr_size);
1471 wil->fw_stats_global.tsf = tsf;
1472 wil->fw_stats_global.ready = 1;
1480 /* skip to next record */
1481 payload += record_size;
1482 payload_size -= record_size;
1487 wmi_evt_link_stats(struct wil6210_vif *vif, int id, void *d, int len)
1489 struct wil6210_priv *wil = vif_to_wil(vif);
1490 struct wmi_link_stats_event *evt = d;
1491 size_t payload_size;
1493 if (len < offsetof(struct wmi_link_stats_event, payload)) {
1494 wil_err(wil, "stats event way too short %d\n", len);
1497 payload_size = le16_to_cpu(evt->payload_size);
1498 if (len < sizeof(struct wmi_link_stats_event) + payload_size) {
1499 wil_err(wil, "stats event too short %d\n", len);
1503 wmi_link_stats_parse(vif, le64_to_cpu(evt->tsf), evt->has_next,
1504 evt->payload, payload_size);
1508 * find cid and ringid for the station vif
1510 * return error, if other interfaces are used or ring was not found
1512 static int wil_find_cid_ringid_sta(struct wil6210_priv *wil,
1513 struct wil6210_vif *vif,
1517 struct wil_ring *ring;
1518 struct wil_ring_tx_data *txdata;
1519 int min_ring_id = wil_get_min_tx_ring_id(wil);
1523 if (!(vif->wdev.iftype == NL80211_IFTYPE_STATION ||
1524 vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT)) {
1525 wil_err(wil, "invalid interface type %d\n", vif->wdev.iftype);
1529 /* In the STA mode, it is expected to have only one ring
1530 * for the AP we are connected to.
1531 * find it and return the cid associated with it.
1533 for (i = min_ring_id; i < WIL6210_MAX_TX_RINGS; i++) {
1534 ring = &wil->ring_tx[i];
1535 txdata = &wil->ring_tx_data[i];
1536 if (!ring->va || !txdata->enabled || txdata->mid != vif->mid)
1539 lcid = wil->ring2cid_tid[i][0];
1540 if (lcid >= WIL6210_MAX_CID) /* skip BCAST */
1543 wil_dbg_wmi(wil, "find sta -> ringid %d cid %d\n", i, lcid);
1549 wil_dbg_wmi(wil, "find sta cid while no rings active?\n");
1555 wmi_evt_auth_status(struct wil6210_vif *vif, int id, void *d, int len)
1557 struct wil6210_priv *wil = vif_to_wil(vif);
1558 struct net_device *ndev = vif_to_ndev(vif);
1559 struct wmi_ft_auth_status_event *data = d;
1560 int ie_len = len - offsetof(struct wmi_ft_auth_status_event, ie_info);
1561 int rc, cid = 0, ringid = 0;
1562 struct cfg80211_ft_event_params ft;
1564 /* auth_alg(u16) + auth_transaction(u16) + status_code(u16) */
1565 const size_t auth_ie_offset = sizeof(u16) * 3;
1566 struct auth_no_hdr *auth = (struct auth_no_hdr *)data->ie_info;
1568 /* check the status */
1569 if (ie_len >= 0 && data->status != WMI_FW_STATUS_SUCCESS) {
1570 wil_err(wil, "FT: auth failed. status %d\n", data->status);
1574 if (ie_len < auth_ie_offset) {
1575 wil_err(wil, "FT: auth event too short, len %d\n", len);
1579 d_len = le16_to_cpu(data->ie_len);
1580 if (d_len != ie_len) {
1582 "FT: auth ie length mismatch, d_len %d should be %d\n",
1587 if (!test_bit(wil_vif_ft_roam, wil->status)) {
1588 wil_err(wil, "FT: Not in roaming state\n");
1592 if (le16_to_cpu(auth->auth_transaction) != 2) {
1593 wil_err(wil, "FT: auth error. auth_transaction %d\n",
1594 le16_to_cpu(auth->auth_transaction));
1598 if (le16_to_cpu(auth->auth_alg) != WLAN_AUTH_FT) {
1599 wil_err(wil, "FT: auth error. auth_alg %d\n",
1600 le16_to_cpu(auth->auth_alg));
1604 wil_dbg_wmi(wil, "FT: Auth to %pM successfully\n", data->mac_addr);
1605 wil_hex_dump_wmi("FT Auth ies : ", DUMP_PREFIX_OFFSET, 16, 1,
1606 data->ie_info, d_len, true);
1608 /* find cid and ringid */
1609 rc = wil_find_cid_ringid_sta(wil, vif, &cid, &ringid);
1611 wil_err(wil, "No valid cid found\n");
1616 /* For secure assoc, remove old keys */
1617 rc = wmi_del_cipher_key(vif, 0, wil->sta[cid].addr,
1618 WMI_KEY_USE_PAIRWISE);
1620 wil_err(wil, "WMI_DELETE_CIPHER_KEY_CMD(PTK) failed\n");
1623 rc = wmi_del_cipher_key(vif, 0, wil->sta[cid].addr,
1624 WMI_KEY_USE_RX_GROUP);
1626 wil_err(wil, "WMI_DELETE_CIPHER_KEY_CMD(GTK) failed\n");
1631 memset(&ft, 0, sizeof(ft));
1632 ft.ies = data->ie_info + auth_ie_offset;
1633 ft.ies_len = d_len - auth_ie_offset;
1634 ft.target_ap = data->mac_addr;
1635 cfg80211_ft_event(ndev, &ft);
1640 wil6210_disconnect(vif, NULL, WLAN_REASON_PREV_AUTH_NOT_VALID);
1644 wmi_evt_reassoc_status(struct wil6210_vif *vif, int id, void *d, int len)
1646 struct wil6210_priv *wil = vif_to_wil(vif);
1647 struct net_device *ndev = vif_to_ndev(vif);
1648 struct wiphy *wiphy = wil_to_wiphy(wil);
1649 struct wmi_ft_reassoc_status_event *data = d;
1650 int ies_len = len - offsetof(struct wmi_ft_reassoc_status_event,
1652 int rc = -ENOENT, cid = 0, ringid = 0;
1653 int ch; /* channel number (primary) */
1654 size_t assoc_req_ie_len = 0, assoc_resp_ie_len = 0;
1655 u8 *assoc_req_ie = NULL, *assoc_resp_ie = NULL;
1656 /* capinfo(u16) + listen_interval(u16) + current_ap mac addr + IEs */
1657 const size_t assoc_req_ie_offset = sizeof(u16) * 2 + ETH_ALEN;
1658 /* capinfo(u16) + status_code(u16) + associd(u16) + IEs */
1659 const size_t assoc_resp_ie_offset = sizeof(u16) * 3;
1662 struct cfg80211_roam_info info;
1665 wil_err(wil, "ft reassoc event too short, len %d\n", len);
1669 wil_dbg_wmi(wil, "Reasoc Status event: status=%d, aid=%d",
1670 data->status, data->aid);
1671 wil_dbg_wmi(wil, " mac_addr=%pM, beacon_ie_len=%d",
1672 data->mac_addr, data->beacon_ie_len);
1673 wil_dbg_wmi(wil, " reassoc_req_ie_len=%d, reassoc_resp_ie_len=%d",
1674 le16_to_cpu(data->reassoc_req_ie_len),
1675 le16_to_cpu(data->reassoc_resp_ie_len));
1677 d_len = le16_to_cpu(data->beacon_ie_len) +
1678 le16_to_cpu(data->reassoc_req_ie_len) +
1679 le16_to_cpu(data->reassoc_resp_ie_len);
1680 if (d_len != ies_len) {
1682 "ft reassoc ie length mismatch, d_len %d should be %d\n",
1687 /* check the status */
1688 if (data->status != WMI_FW_STATUS_SUCCESS) {
1689 wil_err(wil, "ft reassoc failed. status %d\n", data->status);
1693 /* find cid and ringid */
1694 rc = wil_find_cid_ringid_sta(wil, vif, &cid, &ringid);
1696 wil_err(wil, "No valid cid found\n");
1700 ch = data->channel + 1;
1701 wil_info(wil, "FT: Roam %pM channel [%d] cid %d aid %d\n",
1702 data->mac_addr, ch, cid, data->aid);
1704 wil_hex_dump_wmi("reassoc AI : ", DUMP_PREFIX_OFFSET, 16, 1,
1705 data->ie_info, len - sizeof(*data), true);
1707 /* figure out IE's */
1708 if (le16_to_cpu(data->reassoc_req_ie_len) > assoc_req_ie_offset) {
1709 assoc_req_ie = &data->ie_info[assoc_req_ie_offset];
1710 assoc_req_ie_len = le16_to_cpu(data->reassoc_req_ie_len) -
1711 assoc_req_ie_offset;
1713 if (le16_to_cpu(data->reassoc_resp_ie_len) <= assoc_resp_ie_offset) {
1714 wil_err(wil, "FT: reassoc resp ie len is too short, len %d\n",
1715 le16_to_cpu(data->reassoc_resp_ie_len));
1719 assoc_resp_ie = &data->ie_info[le16_to_cpu(data->reassoc_req_ie_len) +
1720 assoc_resp_ie_offset];
1721 assoc_resp_ie_len = le16_to_cpu(data->reassoc_resp_ie_len) -
1722 assoc_resp_ie_offset;
1724 if (test_bit(wil_status_resetting, wil->status) ||
1725 !test_bit(wil_status_fwready, wil->status)) {
1726 wil_err(wil, "FT: status_resetting, cancel reassoc event\n");
1727 /* no need for cleanup, wil_reset will do that */
1731 mutex_lock(&wil->mutex);
1733 /* ring modify to set the ring for the roamed AP settings */
1735 "ft modify tx config for connection CID %d ring %d\n",
1738 rc = wil->txrx_ops.tx_ring_modify(vif, ringid, cid, 0);
1740 wil_err(wil, "modify TX for CID %d MID %d ring %d failed (%d)\n",
1741 cid, vif->mid, ringid, rc);
1742 mutex_unlock(&wil->mutex);
1746 /* Update the driver STA members with the new bss */
1747 wil->sta[cid].aid = data->aid;
1748 wil->sta[cid].stats.ft_roams++;
1749 ether_addr_copy(wil->sta[cid].addr, vif->bss->bssid);
1750 mutex_unlock(&wil->mutex);
1751 del_timer_sync(&vif->connect_timer);
1753 cfg80211_ref_bss(wiphy, vif->bss);
1754 freq = ieee80211_channel_to_frequency(ch, NL80211_BAND_60GHZ);
1756 memset(&info, 0, sizeof(info));
1757 info.channel = ieee80211_get_channel(wiphy, freq);
1758 info.bss = vif->bss;
1759 info.req_ie = assoc_req_ie;
1760 info.req_ie_len = assoc_req_ie_len;
1761 info.resp_ie = assoc_resp_ie;
1762 info.resp_ie_len = assoc_resp_ie_len;
1763 cfg80211_roamed(ndev, &info, GFP_KERNEL);
1769 wil6210_disconnect(vif, NULL, WLAN_REASON_PREV_AUTH_NOT_VALID);
1773 * Some events are ignored for purpose; and need not be interpreted as
1774 * "unhandled events"
1776 static void wmi_evt_ignore(struct wil6210_vif *vif, int id, void *d, int len)
1778 struct wil6210_priv *wil = vif_to_wil(vif);
1780 wil_dbg_wmi(wil, "Ignore event 0x%04x len %d\n", id, len);
1783 static const struct {
1785 void (*handler)(struct wil6210_vif *vif,
1786 int eventid, void *data, int data_len);
1787 } wmi_evt_handlers[] = {
1788 {WMI_READY_EVENTID, wmi_evt_ready},
1789 {WMI_FW_READY_EVENTID, wmi_evt_ignore},
1790 {WMI_RX_MGMT_PACKET_EVENTID, wmi_evt_rx_mgmt},
1791 {WMI_TX_MGMT_PACKET_EVENTID, wmi_evt_tx_mgmt},
1792 {WMI_SCAN_COMPLETE_EVENTID, wmi_evt_scan_complete},
1793 {WMI_CONNECT_EVENTID, wmi_evt_connect},
1794 {WMI_DISCONNECT_EVENTID, wmi_evt_disconnect},
1795 {WMI_EAPOL_RX_EVENTID, wmi_evt_eapol_rx},
1796 {WMI_BA_STATUS_EVENTID, wmi_evt_ba_status},
1797 {WMI_RCP_ADDBA_REQ_EVENTID, wmi_evt_addba_rx_req},
1798 {WMI_DELBA_EVENTID, wmi_evt_delba},
1799 {WMI_RING_EN_EVENTID, wmi_evt_ring_en},
1800 {WMI_DATA_PORT_OPEN_EVENTID, wmi_evt_ignore},
1801 {WMI_SCHED_SCAN_RESULT_EVENTID, wmi_evt_sched_scan_result},
1802 {WMI_LINK_STATS_EVENTID, wmi_evt_link_stats},
1803 {WMI_FT_AUTH_STATUS_EVENTID, wmi_evt_auth_status},
1804 {WMI_FT_REASSOC_STATUS_EVENTID, wmi_evt_reassoc_status},
1808 * Run in IRQ context
1809 * Extract WMI command from mailbox. Queue it to the @wil->pending_wmi_ev
1810 * that will be eventually handled by the @wmi_event_worker in the thread
1811 * context of thread "wil6210_wmi"
1813 void wmi_recv_cmd(struct wil6210_priv *wil)
1815 struct wil6210_mbox_ring_desc d_tail;
1816 struct wil6210_mbox_hdr hdr;
1817 struct wil6210_mbox_ring *r = &wil->mbox_ctl.rx;
1818 struct pending_wmi_event *evt;
1823 unsigned int num_immed_reply = 0;
1825 if (!test_bit(wil_status_mbox_ready, wil->status)) {
1826 wil_err(wil, "Reset in progress. Cannot handle WMI event\n");
1830 if (test_bit(wil_status_suspended, wil->status)) {
1831 wil_err(wil, "suspended. cannot handle WMI event\n");
1838 bool immed_reply = false;
1840 r->head = wil_r(wil, RGF_MBOX +
1841 offsetof(struct wil6210_mbox_ctl, rx.head));
1842 if (r->tail == r->head)
1845 wil_dbg_wmi(wil, "Mbox head %08x tail %08x\n",
1847 /* read cmd descriptor from tail */
1848 wil_memcpy_fromio_32(&d_tail, wil->csr + HOSTADDR(r->tail),
1849 sizeof(struct wil6210_mbox_ring_desc));
1850 if (d_tail.sync == 0) {
1851 wil_err(wil, "Mbox evt not owned by FW?\n");
1855 /* read cmd header from descriptor */
1856 if (0 != wmi_read_hdr(wil, d_tail.addr, &hdr)) {
1857 wil_err(wil, "Mbox evt at 0x%08x?\n",
1858 le32_to_cpu(d_tail.addr));
1861 len = le16_to_cpu(hdr.len);
1862 wil_dbg_wmi(wil, "Mbox evt %04x %04x %04x %02x\n",
1863 le16_to_cpu(hdr.seq), len, le16_to_cpu(hdr.type),
1866 /* read cmd buffer from descriptor */
1867 src = wmi_buffer(wil, d_tail.addr) +
1868 sizeof(struct wil6210_mbox_hdr);
1869 evt = kmalloc(ALIGN(offsetof(struct pending_wmi_event,
1870 event.wmi) + len, 4),
1875 evt->event.hdr = hdr;
1876 cmd = (void *)&evt->event.wmi;
1877 wil_memcpy_fromio_32(cmd, src, len);
1878 /* mark entry as empty */
1879 wil_w(wil, r->tail +
1880 offsetof(struct wil6210_mbox_ring_desc, sync), 0);
1882 if ((hdr.type == WIL_MBOX_HDR_TYPE_WMI) &&
1883 (len >= sizeof(struct wmi_cmd_hdr))) {
1884 struct wmi_cmd_hdr *wmi = &evt->event.wmi;
1885 u16 id = le16_to_cpu(wmi->command_id);
1887 u32 tstamp = le32_to_cpu(wmi->fw_timestamp);
1888 if (test_bit(wil_status_resuming, wil->status)) {
1889 if (id == WMI_TRAFFIC_RESUME_EVENTID)
1890 clear_bit(wil_status_resuming,
1894 "WMI evt %d while resuming\n",
1897 spin_lock_irqsave(&wil->wmi_ev_lock, flags);
1898 if (wil->reply_id && wil->reply_id == id &&
1899 wil->reply_mid == mid) {
1900 if (wil->reply_buf) {
1901 memcpy(wil->reply_buf, wmi,
1902 min(len, wil->reply_size));
1905 if (id == WMI_TRAFFIC_SUSPEND_EVENTID) {
1907 "set suspend_resp_rcvd\n");
1908 wil->suspend_resp_rcvd = true;
1911 spin_unlock_irqrestore(&wil->wmi_ev_lock, flags);
1913 wil_dbg_wmi(wil, "recv %s (0x%04x) MID %d @%d msec\n",
1914 eventid2name(id), id, wmi->mid, tstamp);
1915 trace_wil6210_wmi_event(wmi, &wmi[1],
1916 len - sizeof(*wmi));
1918 wil_hex_dump_wmi("evt ", DUMP_PREFIX_OFFSET, 16, 1,
1919 &evt->event.hdr, sizeof(hdr) + len, true);
1922 r->tail = r->base + ((r->tail - r->base +
1923 sizeof(struct wil6210_mbox_ring_desc)) % r->size);
1924 wil_w(wil, RGF_MBOX +
1925 offsetof(struct wil6210_mbox_ctl, rx.tail), r->tail);
1928 wil_dbg_wmi(wil, "recv_cmd: Complete WMI 0x%04x\n",
1932 complete(&wil->wmi_call);
1934 /* add to the pending list */
1935 spin_lock_irqsave(&wil->wmi_ev_lock, flags);
1936 list_add_tail(&evt->list, &wil->pending_wmi_ev);
1937 spin_unlock_irqrestore(&wil->wmi_ev_lock, flags);
1938 q = queue_work(wil->wmi_wq, &wil->wmi_event_worker);
1939 wil_dbg_wmi(wil, "queue_work -> %d\n", q);
1942 /* normally, 1 event per IRQ should be processed */
1943 wil_dbg_wmi(wil, "recv_cmd: -> %d events queued, %d completed\n",
1944 n - num_immed_reply, num_immed_reply);
1947 int wmi_call(struct wil6210_priv *wil, u16 cmdid, u8 mid, void *buf, u16 len,
1948 u16 reply_id, void *reply, u16 reply_size, int to_msec)
1951 unsigned long remain;
1953 mutex_lock(&wil->wmi_mutex);
1955 spin_lock(&wil->wmi_ev_lock);
1956 wil->reply_id = reply_id;
1957 wil->reply_mid = mid;
1958 wil->reply_buf = reply;
1959 wil->reply_size = reply_size;
1960 reinit_completion(&wil->wmi_call);
1961 spin_unlock(&wil->wmi_ev_lock);
1963 rc = __wmi_send(wil, cmdid, mid, buf, len);
1967 remain = wait_for_completion_timeout(&wil->wmi_call,
1968 msecs_to_jiffies(to_msec));
1970 wil_err(wil, "wmi_call(0x%04x->0x%04x) timeout %d msec\n",
1971 cmdid, reply_id, to_msec);
1975 "wmi_call(0x%04x->0x%04x) completed in %d msec\n",
1977 to_msec - jiffies_to_msecs(remain));
1981 spin_lock(&wil->wmi_ev_lock);
1983 wil->reply_mid = U8_MAX;
1984 wil->reply_buf = NULL;
1985 wil->reply_size = 0;
1986 spin_unlock(&wil->wmi_ev_lock);
1988 mutex_unlock(&wil->wmi_mutex);
1993 int wmi_echo(struct wil6210_priv *wil)
1995 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
1996 struct wmi_echo_cmd cmd = {
1997 .value = cpu_to_le32(0x12345678),
2000 return wmi_call(wil, WMI_ECHO_CMDID, vif->mid, &cmd, sizeof(cmd),
2001 WMI_ECHO_RSP_EVENTID, NULL, 0, 50);
2004 int wmi_set_mac_address(struct wil6210_priv *wil, void *addr)
2006 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
2007 struct wmi_set_mac_address_cmd cmd;
2009 ether_addr_copy(cmd.mac, addr);
2011 wil_dbg_wmi(wil, "Set MAC %pM\n", addr);
2013 return wmi_send(wil, WMI_SET_MAC_ADDRESS_CMDID, vif->mid,
2017 int wmi_led_cfg(struct wil6210_priv *wil, bool enable)
2019 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
2021 struct wmi_led_cfg_cmd cmd = {
2024 .slow_blink_cfg.blink_on =
2025 cpu_to_le32(led_blink_time[WIL_LED_TIME_SLOW].on_ms),
2026 .slow_blink_cfg.blink_off =
2027 cpu_to_le32(led_blink_time[WIL_LED_TIME_SLOW].off_ms),
2028 .medium_blink_cfg.blink_on =
2029 cpu_to_le32(led_blink_time[WIL_LED_TIME_MED].on_ms),
2030 .medium_blink_cfg.blink_off =
2031 cpu_to_le32(led_blink_time[WIL_LED_TIME_MED].off_ms),
2032 .fast_blink_cfg.blink_on =
2033 cpu_to_le32(led_blink_time[WIL_LED_TIME_FAST].on_ms),
2034 .fast_blink_cfg.blink_off =
2035 cpu_to_le32(led_blink_time[WIL_LED_TIME_FAST].off_ms),
2036 .led_polarity = led_polarity,
2039 struct wmi_cmd_hdr wmi;
2040 struct wmi_led_cfg_done_event evt;
2041 } __packed reply = {
2042 .evt = {.status = cpu_to_le32(WMI_FW_STATUS_FAILURE)},
2045 if (led_id == WIL_LED_INVALID_ID)
2048 if (led_id > WIL_LED_MAX_ID) {
2049 wil_err(wil, "Invalid led id %d\n", led_id);
2056 enable ? "enabling" : "disabling", led_id);
2058 rc = wmi_call(wil, WMI_LED_CFG_CMDID, vif->mid, &cmd, sizeof(cmd),
2059 WMI_LED_CFG_DONE_EVENTID, &reply, sizeof(reply),
2064 if (reply.evt.status) {
2065 wil_err(wil, "led %d cfg failed with status %d\n",
2066 led_id, le32_to_cpu(reply.evt.status));
2074 int wmi_pcp_start(struct wil6210_vif *vif,
2075 int bi, u8 wmi_nettype, u8 chan, u8 hidden_ssid, u8 is_go)
2077 struct wil6210_priv *wil = vif_to_wil(vif);
2080 struct wmi_pcp_start_cmd cmd = {
2081 .bcon_interval = cpu_to_le16(bi),
2082 .network_type = wmi_nettype,
2083 .disable_sec_offload = 1,
2084 .channel = chan - 1,
2085 .pcp_max_assoc_sta = max_assoc_sta,
2086 .hidden_ssid = hidden_ssid,
2088 .ap_sme_offload_mode = disable_ap_sme ?
2089 WMI_AP_SME_OFFLOAD_PARTIAL :
2090 WMI_AP_SME_OFFLOAD_FULL,
2091 .abft_len = wil->abft_len,
2094 struct wmi_cmd_hdr wmi;
2095 struct wmi_pcp_started_event evt;
2096 } __packed reply = {
2097 .evt = {.status = WMI_FW_STATUS_FAILURE},
2101 cmd.disable_sec = 1;
2103 if ((cmd.pcp_max_assoc_sta > WIL6210_MAX_CID) ||
2104 (cmd.pcp_max_assoc_sta <= 0)) {
2106 "Requested connection limit %u, valid values are 1 - %d. Setting to %d\n",
2107 max_assoc_sta, WIL6210_MAX_CID, WIL6210_MAX_CID);
2108 cmd.pcp_max_assoc_sta = WIL6210_MAX_CID;
2111 if (disable_ap_sme &&
2112 !test_bit(WMI_FW_CAPABILITY_AP_SME_OFFLOAD_PARTIAL,
2113 wil->fw_capabilities)) {
2114 wil_err(wil, "disable_ap_sme not supported by FW\n");
2119 * Processing time may be huge, in case of secure AP it takes about
2120 * 3500ms for FW to start AP
2122 rc = wmi_call(wil, WMI_PCP_START_CMDID, vif->mid, &cmd, sizeof(cmd),
2123 WMI_PCP_STARTED_EVENTID, &reply, sizeof(reply), 5000);
2127 if (reply.evt.status != WMI_FW_STATUS_SUCCESS)
2130 if (wmi_nettype != WMI_NETTYPE_P2P)
2131 /* Don't fail due to error in the led configuration */
2132 wmi_led_cfg(wil, true);
2137 int wmi_pcp_stop(struct wil6210_vif *vif)
2139 struct wil6210_priv *wil = vif_to_wil(vif);
2142 rc = wmi_led_cfg(wil, false);
2146 return wmi_call(wil, WMI_PCP_STOP_CMDID, vif->mid, NULL, 0,
2147 WMI_PCP_STOPPED_EVENTID, NULL, 0, 20);
2150 int wmi_set_ssid(struct wil6210_vif *vif, u8 ssid_len, const void *ssid)
2152 struct wil6210_priv *wil = vif_to_wil(vif);
2153 struct wmi_set_ssid_cmd cmd = {
2154 .ssid_len = cpu_to_le32(ssid_len),
2157 if (ssid_len > sizeof(cmd.ssid))
2160 memcpy(cmd.ssid, ssid, ssid_len);
2162 return wmi_send(wil, WMI_SET_SSID_CMDID, vif->mid, &cmd, sizeof(cmd));
2165 int wmi_get_ssid(struct wil6210_vif *vif, u8 *ssid_len, void *ssid)
2167 struct wil6210_priv *wil = vif_to_wil(vif);
2170 struct wmi_cmd_hdr wmi;
2171 struct wmi_set_ssid_cmd cmd;
2173 int len; /* reply.cmd.ssid_len in CPU order */
2175 memset(&reply, 0, sizeof(reply));
2177 rc = wmi_call(wil, WMI_GET_SSID_CMDID, vif->mid, NULL, 0,
2178 WMI_GET_SSID_EVENTID, &reply, sizeof(reply), 20);
2182 len = le32_to_cpu(reply.cmd.ssid_len);
2183 if (len > sizeof(reply.cmd.ssid))
2187 memcpy(ssid, reply.cmd.ssid, len);
2192 int wmi_set_channel(struct wil6210_priv *wil, int channel)
2194 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
2195 struct wmi_set_pcp_channel_cmd cmd = {
2196 .channel = channel - 1,
2199 return wmi_send(wil, WMI_SET_PCP_CHANNEL_CMDID, vif->mid,
2203 int wmi_get_channel(struct wil6210_priv *wil, int *channel)
2205 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
2208 struct wmi_cmd_hdr wmi;
2209 struct wmi_set_pcp_channel_cmd cmd;
2212 memset(&reply, 0, sizeof(reply));
2214 rc = wmi_call(wil, WMI_GET_PCP_CHANNEL_CMDID, vif->mid, NULL, 0,
2215 WMI_GET_PCP_CHANNEL_EVENTID, &reply, sizeof(reply), 20);
2219 if (reply.cmd.channel > 3)
2222 *channel = reply.cmd.channel + 1;
2227 int wmi_p2p_cfg(struct wil6210_vif *vif, int channel, int bi)
2229 struct wil6210_priv *wil = vif_to_wil(vif);
2231 struct wmi_p2p_cfg_cmd cmd = {
2232 .discovery_mode = WMI_DISCOVERY_MODE_PEER2PEER,
2233 .bcon_interval = cpu_to_le16(bi),
2234 .channel = channel - 1,
2237 struct wmi_cmd_hdr wmi;
2238 struct wmi_p2p_cfg_done_event evt;
2239 } __packed reply = {
2240 .evt = {.status = WMI_FW_STATUS_FAILURE},
2243 wil_dbg_wmi(wil, "sending WMI_P2P_CFG_CMDID\n");
2245 rc = wmi_call(wil, WMI_P2P_CFG_CMDID, vif->mid, &cmd, sizeof(cmd),
2246 WMI_P2P_CFG_DONE_EVENTID, &reply, sizeof(reply), 300);
2247 if (!rc && reply.evt.status != WMI_FW_STATUS_SUCCESS) {
2248 wil_err(wil, "P2P_CFG failed. status %d\n", reply.evt.status);
2255 int wmi_start_listen(struct wil6210_vif *vif)
2257 struct wil6210_priv *wil = vif_to_wil(vif);
2260 struct wmi_cmd_hdr wmi;
2261 struct wmi_listen_started_event evt;
2262 } __packed reply = {
2263 .evt = {.status = WMI_FW_STATUS_FAILURE},
2266 wil_dbg_wmi(wil, "sending WMI_START_LISTEN_CMDID\n");
2268 rc = wmi_call(wil, WMI_START_LISTEN_CMDID, vif->mid, NULL, 0,
2269 WMI_LISTEN_STARTED_EVENTID, &reply, sizeof(reply), 300);
2270 if (!rc && reply.evt.status != WMI_FW_STATUS_SUCCESS) {
2271 wil_err(wil, "device failed to start listen. status %d\n",
2279 int wmi_start_search(struct wil6210_vif *vif)
2281 struct wil6210_priv *wil = vif_to_wil(vif);
2284 struct wmi_cmd_hdr wmi;
2285 struct wmi_search_started_event evt;
2286 } __packed reply = {
2287 .evt = {.status = WMI_FW_STATUS_FAILURE},
2290 wil_dbg_wmi(wil, "sending WMI_START_SEARCH_CMDID\n");
2292 rc = wmi_call(wil, WMI_START_SEARCH_CMDID, vif->mid, NULL, 0,
2293 WMI_SEARCH_STARTED_EVENTID, &reply, sizeof(reply), 300);
2294 if (!rc && reply.evt.status != WMI_FW_STATUS_SUCCESS) {
2295 wil_err(wil, "device failed to start search. status %d\n",
2303 int wmi_stop_discovery(struct wil6210_vif *vif)
2305 struct wil6210_priv *wil = vif_to_wil(vif);
2308 wil_dbg_wmi(wil, "sending WMI_DISCOVERY_STOP_CMDID\n");
2310 rc = wmi_call(wil, WMI_DISCOVERY_STOP_CMDID, vif->mid, NULL, 0,
2311 WMI_DISCOVERY_STOPPED_EVENTID, NULL, 0, 100);
2314 wil_err(wil, "Failed to stop discovery\n");
2319 int wmi_del_cipher_key(struct wil6210_vif *vif, u8 key_index,
2320 const void *mac_addr, int key_usage)
2322 struct wil6210_priv *wil = vif_to_wil(vif);
2323 struct wmi_delete_cipher_key_cmd cmd = {
2324 .key_index = key_index,
2328 memcpy(cmd.mac, mac_addr, WMI_MAC_LEN);
2330 return wmi_send(wil, WMI_DELETE_CIPHER_KEY_CMDID, vif->mid,
2334 int wmi_add_cipher_key(struct wil6210_vif *vif, u8 key_index,
2335 const void *mac_addr, int key_len, const void *key,
2338 struct wil6210_priv *wil = vif_to_wil(vif);
2339 struct wmi_add_cipher_key_cmd cmd = {
2340 .key_index = key_index,
2341 .key_usage = key_usage,
2345 if (!key || (key_len > sizeof(cmd.key)))
2348 memcpy(cmd.key, key, key_len);
2350 memcpy(cmd.mac, mac_addr, WMI_MAC_LEN);
2352 return wmi_send(wil, WMI_ADD_CIPHER_KEY_CMDID, vif->mid,
2356 int wmi_set_ie(struct wil6210_vif *vif, u8 type, u16 ie_len, const void *ie)
2358 struct wil6210_priv *wil = vif_to_wil(vif);
2359 static const char *const names[] = {
2360 [WMI_FRAME_BEACON] = "BEACON",
2361 [WMI_FRAME_PROBE_REQ] = "PROBE_REQ",
2362 [WMI_FRAME_PROBE_RESP] = "WMI_FRAME_PROBE_RESP",
2363 [WMI_FRAME_ASSOC_REQ] = "WMI_FRAME_ASSOC_REQ",
2364 [WMI_FRAME_ASSOC_RESP] = "WMI_FRAME_ASSOC_RESP",
2367 u16 len = sizeof(struct wmi_set_appie_cmd) + ie_len;
2368 struct wmi_set_appie_cmd *cmd;
2375 cmd = kzalloc(len, GFP_KERNEL);
2383 cmd->mgmt_frm_type = type;
2384 /* BUG: FW API define ieLen as u8. Will fix FW */
2385 cmd->ie_len = cpu_to_le16(ie_len);
2386 memcpy(cmd->ie_info, ie, ie_len);
2387 rc = wmi_send(wil, WMI_SET_APPIE_CMDID, vif->mid, cmd, len);
2391 const char *name = type < ARRAY_SIZE(names) ?
2393 wil_err(wil, "set_ie(%d %s) failed : %d\n", type, name, rc);
2399 int wmi_update_ft_ies(struct wil6210_vif *vif, u16 ie_len, const void *ie)
2401 struct wil6210_priv *wil = vif_to_wil(vif);
2403 struct wmi_update_ft_ies_cmd *cmd;
2409 len = sizeof(struct wmi_update_ft_ies_cmd) + ie_len;
2411 wil_err(wil, "wraparound. ie len %d\n", ie_len);
2415 cmd = kzalloc(len, GFP_KERNEL);
2421 cmd->ie_len = cpu_to_le16(ie_len);
2422 memcpy(cmd->ie_info, ie, ie_len);
2423 rc = wmi_send(wil, WMI_UPDATE_FT_IES_CMDID, vif->mid, cmd, len);
2428 wil_err(wil, "update ft ies failed : %d\n", rc);
2434 * wmi_rxon - turn radio on/off
2435 * @on: turn on if true, off otherwise
2437 * Only switch radio. Channel should be set separately.
2438 * No timeout for rxon - radio turned on forever unless some other call
2441 int wmi_rxon(struct wil6210_priv *wil, bool on)
2443 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
2446 struct wmi_cmd_hdr wmi;
2447 struct wmi_listen_started_event evt;
2448 } __packed reply = {
2449 .evt = {.status = WMI_FW_STATUS_FAILURE},
2452 wil_info(wil, "(%s)\n", on ? "on" : "off");
2455 rc = wmi_call(wil, WMI_START_LISTEN_CMDID, vif->mid, NULL, 0,
2456 WMI_LISTEN_STARTED_EVENTID,
2457 &reply, sizeof(reply), 100);
2458 if ((rc == 0) && (reply.evt.status != WMI_FW_STATUS_SUCCESS))
2461 rc = wmi_call(wil, WMI_DISCOVERY_STOP_CMDID, vif->mid, NULL, 0,
2462 WMI_DISCOVERY_STOPPED_EVENTID, NULL, 0, 20);
2468 int wmi_rx_chain_add(struct wil6210_priv *wil, struct wil_ring *vring)
2470 struct net_device *ndev = wil->main_ndev;
2471 struct wireless_dev *wdev = ndev->ieee80211_ptr;
2472 struct wil6210_vif *vif = ndev_to_vif(ndev);
2473 struct wmi_cfg_rx_chain_cmd cmd = {
2474 .action = WMI_RX_CHAIN_ADD,
2476 .max_mpdu_size = cpu_to_le16(
2477 wil_mtu2macbuf(wil->rx_buf_len)),
2478 .ring_mem_base = cpu_to_le64(vring->pa),
2479 .ring_size = cpu_to_le16(vring->size),
2481 .mid = 0, /* TODO - what is it? */
2482 .decap_trans_type = WMI_DECAP_TYPE_802_3,
2483 .reorder_type = WMI_RX_SW_REORDER,
2484 .host_thrsh = cpu_to_le16(rx_ring_overflow_thrsh),
2487 struct wmi_cmd_hdr wmi;
2488 struct wmi_cfg_rx_chain_done_event evt;
2492 memset(&evt, 0, sizeof(evt));
2494 if (wdev->iftype == NL80211_IFTYPE_MONITOR) {
2495 struct ieee80211_channel *ch = wil->monitor_chandef.chan;
2497 cmd.sniffer_cfg.mode = cpu_to_le32(WMI_SNIFFER_ON);
2499 cmd.sniffer_cfg.channel = ch->hw_value - 1;
2500 cmd.sniffer_cfg.phy_info_mode =
2501 cpu_to_le32(ndev->type == ARPHRD_IEEE80211_RADIOTAP);
2502 cmd.sniffer_cfg.phy_support =
2503 cpu_to_le32((wil->monitor_flags & MONITOR_FLAG_CONTROL)
2504 ? WMI_SNIFFER_CP : WMI_SNIFFER_BOTH_PHYS);
2506 /* Initialize offload (in non-sniffer mode).
2507 * Linux IP stack always calculates IP checksum
2508 * HW always calculate TCP/UDP checksum
2510 cmd.l3_l4_ctrl |= (1 << L3_L4_CTRL_TCPIP_CHECKSUM_EN_POS);
2514 cmd.l2_802_3_offload_ctrl |=
2515 L2_802_3_OFFLOAD_CTRL_SNAP_KEEP_MSK;
2517 /* typical time for secure PCP is 840ms */
2518 rc = wmi_call(wil, WMI_CFG_RX_CHAIN_CMDID, vif->mid, &cmd, sizeof(cmd),
2519 WMI_CFG_RX_CHAIN_DONE_EVENTID, &evt, sizeof(evt), 2000);
2523 if (le32_to_cpu(evt.evt.status) != WMI_CFG_RX_CHAIN_SUCCESS)
2526 vring->hwtail = le32_to_cpu(evt.evt.rx_ring_tail_ptr);
2528 wil_dbg_misc(wil, "Rx init: status %d tail 0x%08x\n",
2529 le32_to_cpu(evt.evt.status), vring->hwtail);
2534 int wmi_get_temperature(struct wil6210_priv *wil, u32 *t_bb, u32 *t_rf)
2536 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
2538 struct wmi_temp_sense_cmd cmd = {
2539 .measure_baseband_en = cpu_to_le32(!!t_bb),
2540 .measure_rf_en = cpu_to_le32(!!t_rf),
2541 .measure_mode = cpu_to_le32(TEMPERATURE_MEASURE_NOW),
2544 struct wmi_cmd_hdr wmi;
2545 struct wmi_temp_sense_done_event evt;
2548 memset(&reply, 0, sizeof(reply));
2550 rc = wmi_call(wil, WMI_TEMP_SENSE_CMDID, vif->mid, &cmd, sizeof(cmd),
2551 WMI_TEMP_SENSE_DONE_EVENTID, &reply, sizeof(reply), 100);
2556 *t_bb = le32_to_cpu(reply.evt.baseband_t1000);
2558 *t_rf = le32_to_cpu(reply.evt.rf_t1000);
2563 int wmi_disconnect_sta(struct wil6210_vif *vif, const u8 *mac, u16 reason,
2566 struct wil6210_priv *wil = vif_to_wil(vif);
2568 struct wmi_disconnect_sta_cmd disc_sta_cmd = {
2569 .disconnect_reason = cpu_to_le16(reason),
2571 struct wmi_del_sta_cmd del_sta_cmd = {
2572 .disconnect_reason = cpu_to_le16(reason),
2575 struct wmi_cmd_hdr wmi;
2576 struct wmi_disconnect_event evt;
2579 wil_dbg_wmi(wil, "disconnect_sta: (%pM, reason %d)\n", mac, reason);
2581 memset(&reply, 0, sizeof(reply));
2582 vif->locally_generated_disc = true;
2584 ether_addr_copy(del_sta_cmd.dst_mac, mac);
2585 rc = wmi_call(wil, WMI_DEL_STA_CMDID, vif->mid, &del_sta_cmd,
2586 sizeof(del_sta_cmd), WMI_DISCONNECT_EVENTID,
2587 &reply, sizeof(reply), 1000);
2589 ether_addr_copy(disc_sta_cmd.dst_mac, mac);
2590 rc = wmi_call(wil, WMI_DISCONNECT_STA_CMDID, vif->mid,
2591 &disc_sta_cmd, sizeof(disc_sta_cmd),
2592 WMI_DISCONNECT_EVENTID,
2593 &reply, sizeof(reply), 1000);
2595 /* failure to disconnect in reasonable time treated as FW error */
2597 wil_fw_error_recovery(wil);
2605 int wmi_addba(struct wil6210_priv *wil, u8 mid,
2606 u8 ringid, u8 size, u16 timeout)
2608 u8 amsdu = wil->use_enhanced_dma_hw && wil->use_rx_hw_reordering &&
2609 test_bit(WMI_FW_CAPABILITY_AMSDU, wil->fw_capabilities) &&
2611 struct wmi_ring_ba_en_cmd cmd = {
2613 .agg_max_wsize = size,
2614 .ba_timeout = cpu_to_le16(timeout),
2618 wil_dbg_wmi(wil, "addba: (ring %d size %d timeout %d amsdu %d)\n",
2619 ringid, size, timeout, amsdu);
2621 return wmi_send(wil, WMI_RING_BA_EN_CMDID, mid, &cmd, sizeof(cmd));
2624 int wmi_delba_tx(struct wil6210_priv *wil, u8 mid, u8 ringid, u16 reason)
2626 struct wmi_ring_ba_dis_cmd cmd = {
2628 .reason = cpu_to_le16(reason),
2631 wil_dbg_wmi(wil, "delba_tx: (ring %d reason %d)\n", ringid, reason);
2633 return wmi_send(wil, WMI_RING_BA_DIS_CMDID, mid, &cmd, sizeof(cmd));
2636 int wmi_delba_rx(struct wil6210_priv *wil, u8 mid, u8 cidxtid, u16 reason)
2638 struct wmi_rcp_delba_cmd cmd = {
2640 .reason = cpu_to_le16(reason),
2643 wil_dbg_wmi(wil, "delba_rx: (CID %d TID %d reason %d)\n", cidxtid & 0xf,
2644 (cidxtid >> 4) & 0xf, reason);
2646 return wmi_send(wil, WMI_RCP_DELBA_CMDID, mid, &cmd, sizeof(cmd));
2649 int wmi_addba_rx_resp(struct wil6210_priv *wil,
2650 u8 mid, u8 cid, u8 tid, u8 token,
2651 u16 status, bool amsdu, u16 agg_wsize, u16 timeout)
2654 struct wmi_rcp_addba_resp_cmd cmd = {
2655 .cidxtid = mk_cidxtid(cid, tid),
2656 .dialog_token = token,
2657 .status_code = cpu_to_le16(status),
2658 /* bit 0: A-MSDU supported
2659 * bit 1: policy (should be 0 for us)
2661 * bits 6..15: buffer size
2663 .ba_param_set = cpu_to_le16((amsdu ? 1 : 0) | (tid << 2) |
2665 .ba_timeout = cpu_to_le16(timeout),
2668 struct wmi_cmd_hdr wmi;
2669 struct wmi_rcp_addba_resp_sent_event evt;
2670 } __packed reply = {
2671 .evt = {.status = cpu_to_le16(WMI_FW_STATUS_FAILURE)},
2675 "ADDBA response for MID %d CID %d TID %d size %d timeout %d status %d AMSDU%s\n",
2676 mid, cid, tid, agg_wsize,
2677 timeout, status, amsdu ? "+" : "-");
2679 rc = wmi_call(wil, WMI_RCP_ADDBA_RESP_CMDID, mid, &cmd, sizeof(cmd),
2680 WMI_RCP_ADDBA_RESP_SENT_EVENTID, &reply, sizeof(reply),
2685 if (reply.evt.status) {
2686 wil_err(wil, "ADDBA response failed with status %d\n",
2687 le16_to_cpu(reply.evt.status));
2694 int wmi_addba_rx_resp_edma(struct wil6210_priv *wil, u8 mid, u8 cid, u8 tid,
2695 u8 token, u16 status, bool amsdu, u16 agg_wsize,
2699 struct wmi_rcp_addba_resp_edma_cmd cmd = {
2702 .dialog_token = token,
2703 .status_code = cpu_to_le16(status),
2704 /* bit 0: A-MSDU supported
2705 * bit 1: policy (should be 0 for us)
2707 * bits 6..15: buffer size
2709 .ba_param_set = cpu_to_le16((amsdu ? 1 : 0) | (tid << 2) |
2711 .ba_timeout = cpu_to_le16(timeout),
2712 /* route all the connections to status ring 0 */
2713 .status_ring_id = WIL_DEFAULT_RX_STATUS_RING_ID,
2716 struct wmi_cmd_hdr wmi;
2717 struct wmi_rcp_addba_resp_sent_event evt;
2718 } __packed reply = {
2719 .evt = {.status = cpu_to_le16(WMI_FW_STATUS_FAILURE)},
2723 "ADDBA response for CID %d TID %d size %d timeout %d status %d AMSDU%s, sring_id %d\n",
2724 cid, tid, agg_wsize, timeout, status, amsdu ? "+" : "-",
2725 WIL_DEFAULT_RX_STATUS_RING_ID);
2727 rc = wmi_call(wil, WMI_RCP_ADDBA_RESP_EDMA_CMDID, mid, &cmd,
2728 sizeof(cmd), WMI_RCP_ADDBA_RESP_SENT_EVENTID, &reply,
2729 sizeof(reply), WIL_WMI_CALL_GENERAL_TO_MS);
2733 if (reply.evt.status) {
2734 wil_err(wil, "ADDBA response failed with status %d\n",
2735 le16_to_cpu(reply.evt.status));
2742 int wmi_ps_dev_profile_cfg(struct wil6210_priv *wil,
2743 enum wmi_ps_profile_type ps_profile)
2745 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
2747 struct wmi_ps_dev_profile_cfg_cmd cmd = {
2748 .ps_profile = ps_profile,
2751 struct wmi_cmd_hdr wmi;
2752 struct wmi_ps_dev_profile_cfg_event evt;
2753 } __packed reply = {
2754 .evt = {.status = cpu_to_le32(WMI_PS_CFG_CMD_STATUS_ERROR)},
2758 wil_dbg_wmi(wil, "Setting ps dev profile %d\n", ps_profile);
2760 rc = wmi_call(wil, WMI_PS_DEV_PROFILE_CFG_CMDID, vif->mid,
2762 WMI_PS_DEV_PROFILE_CFG_EVENTID, &reply, sizeof(reply),
2767 status = le32_to_cpu(reply.evt.status);
2769 if (status != WMI_PS_CFG_CMD_STATUS_SUCCESS) {
2770 wil_err(wil, "ps dev profile cfg failed with status %d\n",
2778 int wmi_set_mgmt_retry(struct wil6210_priv *wil, u8 retry_short)
2780 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
2782 struct wmi_set_mgmt_retry_limit_cmd cmd = {
2783 .mgmt_retry_limit = retry_short,
2786 struct wmi_cmd_hdr wmi;
2787 struct wmi_set_mgmt_retry_limit_event evt;
2788 } __packed reply = {
2789 .evt = {.status = WMI_FW_STATUS_FAILURE},
2792 wil_dbg_wmi(wil, "Setting mgmt retry short %d\n", retry_short);
2794 if (!test_bit(WMI_FW_CAPABILITY_MGMT_RETRY_LIMIT, wil->fw_capabilities))
2797 rc = wmi_call(wil, WMI_SET_MGMT_RETRY_LIMIT_CMDID, vif->mid,
2799 WMI_SET_MGMT_RETRY_LIMIT_EVENTID, &reply, sizeof(reply),
2804 if (reply.evt.status != WMI_FW_STATUS_SUCCESS) {
2805 wil_err(wil, "set mgmt retry limit failed with status %d\n",
2813 int wmi_get_mgmt_retry(struct wil6210_priv *wil, u8 *retry_short)
2815 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
2818 struct wmi_cmd_hdr wmi;
2819 struct wmi_get_mgmt_retry_limit_event evt;
2822 wil_dbg_wmi(wil, "getting mgmt retry short\n");
2824 if (!test_bit(WMI_FW_CAPABILITY_MGMT_RETRY_LIMIT, wil->fw_capabilities))
2827 memset(&reply, 0, sizeof(reply));
2828 rc = wmi_call(wil, WMI_GET_MGMT_RETRY_LIMIT_CMDID, vif->mid, NULL, 0,
2829 WMI_GET_MGMT_RETRY_LIMIT_EVENTID, &reply, sizeof(reply),
2835 *retry_short = reply.evt.mgmt_retry_limit;
2840 int wmi_abort_scan(struct wil6210_vif *vif)
2842 struct wil6210_priv *wil = vif_to_wil(vif);
2845 wil_dbg_wmi(wil, "sending WMI_ABORT_SCAN_CMDID\n");
2847 rc = wmi_send(wil, WMI_ABORT_SCAN_CMDID, vif->mid, NULL, 0);
2849 wil_err(wil, "Failed to abort scan (%d)\n", rc);
2854 int wmi_new_sta(struct wil6210_vif *vif, const u8 *mac, u8 aid)
2856 struct wil6210_priv *wil = vif_to_wil(vif);
2858 struct wmi_new_sta_cmd cmd = {
2862 wil_dbg_wmi(wil, "new sta %pM, aid %d\n", mac, aid);
2864 ether_addr_copy(cmd.dst_mac, mac);
2866 rc = wmi_send(wil, WMI_NEW_STA_CMDID, vif->mid, &cmd, sizeof(cmd));
2868 wil_err(wil, "Failed to send new sta (%d)\n", rc);
2873 void wmi_event_flush(struct wil6210_priv *wil)
2876 struct pending_wmi_event *evt, *t;
2878 wil_dbg_wmi(wil, "event_flush\n");
2880 spin_lock_irqsave(&wil->wmi_ev_lock, flags);
2882 list_for_each_entry_safe(evt, t, &wil->pending_wmi_ev, list) {
2883 list_del(&evt->list);
2887 spin_unlock_irqrestore(&wil->wmi_ev_lock, flags);
2890 static const char *suspend_status2name(u8 status)
2893 case WMI_TRAFFIC_SUSPEND_REJECTED_LINK_NOT_IDLE:
2894 return "LINK_NOT_IDLE";
2896 return "Untracked status";
2900 int wmi_suspend(struct wil6210_priv *wil)
2902 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
2904 struct wmi_traffic_suspend_cmd cmd = {
2905 .wakeup_trigger = wil->wakeup_trigger,
2908 struct wmi_cmd_hdr wmi;
2909 struct wmi_traffic_suspend_event evt;
2910 } __packed reply = {
2911 .evt = {.status = WMI_TRAFFIC_SUSPEND_REJECTED_LINK_NOT_IDLE},
2914 u32 suspend_to = WIL_WAIT_FOR_SUSPEND_RESUME_COMP;
2916 wil->suspend_resp_rcvd = false;
2917 wil->suspend_resp_comp = false;
2919 rc = wmi_call(wil, WMI_TRAFFIC_SUSPEND_CMDID, vif->mid,
2921 WMI_TRAFFIC_SUSPEND_EVENTID, &reply, sizeof(reply),
2924 wil_err(wil, "wmi_call for suspend req failed, rc=%d\n", rc);
2927 wil->suspend_stats.rejected_by_device++;
2929 wil->suspend_stats.rejected_by_host++;
2933 wil_dbg_wmi(wil, "waiting for suspend_response_completed\n");
2935 rc = wait_event_interruptible_timeout(wil->wq,
2936 wil->suspend_resp_comp,
2937 msecs_to_jiffies(suspend_to));
2939 wil_err(wil, "TO waiting for suspend_response_completed\n");
2940 if (wil->suspend_resp_rcvd)
2941 /* Device responded but we TO due to another reason */
2942 wil->suspend_stats.rejected_by_host++;
2944 wil->suspend_stats.rejected_by_device++;
2949 wil_dbg_wmi(wil, "suspend_response_completed rcvd\n");
2950 if (reply.evt.status != WMI_TRAFFIC_SUSPEND_APPROVED) {
2951 wil_dbg_pm(wil, "device rejected the suspend, %s\n",
2952 suspend_status2name(reply.evt.status));
2953 wil->suspend_stats.rejected_by_device++;
2955 rc = reply.evt.status;
2958 wil->suspend_resp_rcvd = false;
2959 wil->suspend_resp_comp = false;
2964 static void resume_triggers2string(u32 triggers, char *string, int str_size)
2969 strlcat(string, " UNKNOWN", str_size);
2973 if (triggers & WMI_RESUME_TRIGGER_HOST)
2974 strlcat(string, " HOST", str_size);
2976 if (triggers & WMI_RESUME_TRIGGER_UCAST_RX)
2977 strlcat(string, " UCAST_RX", str_size);
2979 if (triggers & WMI_RESUME_TRIGGER_BCAST_RX)
2980 strlcat(string, " BCAST_RX", str_size);
2982 if (triggers & WMI_RESUME_TRIGGER_WMI_EVT)
2983 strlcat(string, " WMI_EVT", str_size);
2986 int wmi_resume(struct wil6210_priv *wil)
2988 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
2992 struct wmi_cmd_hdr wmi;
2993 struct wmi_traffic_resume_event evt;
2994 } __packed reply = {
2995 .evt = {.status = WMI_TRAFFIC_RESUME_FAILED,
2997 cpu_to_le32(WMI_RESUME_TRIGGER_UNKNOWN)},
3000 rc = wmi_call(wil, WMI_TRAFFIC_RESUME_CMDID, vif->mid, NULL, 0,
3001 WMI_TRAFFIC_RESUME_EVENTID, &reply, sizeof(reply),
3002 WIL_WAIT_FOR_SUSPEND_RESUME_COMP);
3005 resume_triggers2string(le32_to_cpu(reply.evt.resume_triggers), string,
3007 wil_dbg_pm(wil, "device resume %s, resume triggers:%s (0x%x)\n",
3008 reply.evt.status ? "failed" : "passed", string,
3009 le32_to_cpu(reply.evt.resume_triggers));
3011 return reply.evt.status;
3014 int wmi_port_allocate(struct wil6210_priv *wil, u8 mid,
3015 const u8 *mac, enum nl80211_iftype iftype)
3018 struct wmi_port_allocate_cmd cmd = {
3022 struct wmi_cmd_hdr wmi;
3023 struct wmi_port_allocated_event evt;
3024 } __packed reply = {
3025 .evt = {.status = WMI_FW_STATUS_FAILURE},
3028 wil_dbg_misc(wil, "port allocate, mid %d iftype %d, mac %pM\n",
3031 ether_addr_copy(cmd.mac, mac);
3033 case NL80211_IFTYPE_STATION:
3034 cmd.port_role = WMI_PORT_STA;
3036 case NL80211_IFTYPE_AP:
3037 cmd.port_role = WMI_PORT_AP;
3039 case NL80211_IFTYPE_P2P_CLIENT:
3040 cmd.port_role = WMI_PORT_P2P_CLIENT;
3042 case NL80211_IFTYPE_P2P_GO:
3043 cmd.port_role = WMI_PORT_P2P_GO;
3045 /* what about monitor??? */
3047 wil_err(wil, "unsupported iftype: %d\n", iftype);
3051 rc = wmi_call(wil, WMI_PORT_ALLOCATE_CMDID, mid,
3053 WMI_PORT_ALLOCATED_EVENTID, &reply,
3054 sizeof(reply), 300);
3056 wil_err(wil, "failed to allocate port, status %d\n", rc);
3059 if (reply.evt.status != WMI_FW_STATUS_SUCCESS) {
3060 wil_err(wil, "WMI_PORT_ALLOCATE returned status %d\n",
3068 int wmi_port_delete(struct wil6210_priv *wil, u8 mid)
3071 struct wmi_port_delete_cmd cmd = {
3075 struct wmi_cmd_hdr wmi;
3076 struct wmi_port_deleted_event evt;
3077 } __packed reply = {
3078 .evt = {.status = WMI_FW_STATUS_FAILURE},
3081 wil_dbg_misc(wil, "port delete, mid %d\n", mid);
3083 rc = wmi_call(wil, WMI_PORT_DELETE_CMDID, mid,
3085 WMI_PORT_DELETED_EVENTID, &reply,
3086 sizeof(reply), 2000);
3088 wil_err(wil, "failed to delete port, status %d\n", rc);
3091 if (reply.evt.status != WMI_FW_STATUS_SUCCESS) {
3092 wil_err(wil, "WMI_PORT_DELETE returned status %d\n",
3100 static bool wmi_evt_call_handler(struct wil6210_vif *vif, int id,
3105 for (i = 0; i < ARRAY_SIZE(wmi_evt_handlers); i++) {
3106 if (wmi_evt_handlers[i].eventid == id) {
3107 wmi_evt_handlers[i].handler(vif, id, d, len);
3115 static void wmi_event_handle(struct wil6210_priv *wil,
3116 struct wil6210_mbox_hdr *hdr)
3118 u16 len = le16_to_cpu(hdr->len);
3119 struct wil6210_vif *vif;
3121 if ((hdr->type == WIL_MBOX_HDR_TYPE_WMI) &&
3122 (len >= sizeof(struct wmi_cmd_hdr))) {
3123 struct wmi_cmd_hdr *wmi = (void *)(&hdr[1]);
3124 void *evt_data = (void *)(&wmi[1]);
3125 u16 id = le16_to_cpu(wmi->command_id);
3128 wil_dbg_wmi(wil, "Handle %s (0x%04x) (reply_id 0x%04x,%d)\n",
3129 eventid2name(id), id, wil->reply_id,
3132 if (mid == MID_BROADCAST)
3134 if (mid >= wil->max_vifs) {
3135 wil_dbg_wmi(wil, "invalid mid %d, event skipped\n",
3139 vif = wil->vifs[mid];
3141 wil_dbg_wmi(wil, "event for empty VIF(%d), skipped\n",
3146 /* check if someone waits for this event */
3147 if (wil->reply_id && wil->reply_id == id &&
3148 wil->reply_mid == mid) {
3149 WARN_ON(wil->reply_buf);
3151 wmi_evt_call_handler(vif, id, evt_data,
3152 len - sizeof(*wmi));
3153 wil_dbg_wmi(wil, "event_handle: Complete WMI 0x%04x\n",
3155 complete(&wil->wmi_call);
3158 /* unsolicited event */
3159 /* search for handler */
3160 if (!wmi_evt_call_handler(vif, id, evt_data,
3161 len - sizeof(*wmi))) {
3162 wil_info(wil, "Unhandled event 0x%04x\n", id);
3165 wil_err(wil, "Unknown event type\n");
3166 print_hex_dump(KERN_ERR, "evt?? ", DUMP_PREFIX_OFFSET, 16, 1,
3167 hdr, sizeof(*hdr) + len, true);
3172 * Retrieve next WMI event from the pending list
3174 static struct list_head *next_wmi_ev(struct wil6210_priv *wil)
3177 struct list_head *ret = NULL;
3179 spin_lock_irqsave(&wil->wmi_ev_lock, flags);
3181 if (!list_empty(&wil->pending_wmi_ev)) {
3182 ret = wil->pending_wmi_ev.next;
3186 spin_unlock_irqrestore(&wil->wmi_ev_lock, flags);
3192 * Handler for the WMI events
3194 void wmi_event_worker(struct work_struct *work)
3196 struct wil6210_priv *wil = container_of(work, struct wil6210_priv,
3198 struct pending_wmi_event *evt;
3199 struct list_head *lh;
3201 wil_dbg_wmi(wil, "event_worker: Start\n");
3202 while ((lh = next_wmi_ev(wil)) != NULL) {
3203 evt = list_entry(lh, struct pending_wmi_event, list);
3204 wmi_event_handle(wil, &evt->event.hdr);
3207 wil_dbg_wmi(wil, "event_worker: Finished\n");
3210 bool wil_is_wmi_idle(struct wil6210_priv *wil)
3213 struct wil6210_mbox_ring *r = &wil->mbox_ctl.rx;
3216 spin_lock_irqsave(&wil->wmi_ev_lock, flags);
3218 /* Check if there are pending WMI events in the events queue */
3219 if (!list_empty(&wil->pending_wmi_ev)) {
3220 wil_dbg_pm(wil, "Pending WMI events in queue\n");
3224 /* Check if there is a pending WMI call */
3225 if (wil->reply_id) {
3226 wil_dbg_pm(wil, "Pending WMI call\n");
3230 /* Check if there are pending RX events in mbox */
3231 r->head = wil_r(wil, RGF_MBOX +
3232 offsetof(struct wil6210_mbox_ctl, rx.head));
3233 if (r->tail != r->head)
3234 wil_dbg_pm(wil, "Pending WMI mbox events\n");
3239 spin_unlock_irqrestore(&wil->wmi_ev_lock, flags);
3244 wmi_sched_scan_set_ssids(struct wil6210_priv *wil,
3245 struct wmi_start_sched_scan_cmd *cmd,
3246 struct cfg80211_ssid *ssids, int n_ssids,
3247 struct cfg80211_match_set *match_sets,
3252 if (n_match_sets > WMI_MAX_PNO_SSID_NUM) {
3253 wil_dbg_wmi(wil, "too many match sets (%d), use first %d\n",
3254 n_match_sets, WMI_MAX_PNO_SSID_NUM);
3255 n_match_sets = WMI_MAX_PNO_SSID_NUM;
3257 cmd->num_of_ssids = n_match_sets;
3259 for (i = 0; i < n_match_sets; i++) {
3260 struct wmi_sched_scan_ssid_match *wmi_match =
3261 &cmd->ssid_for_match[i];
3262 struct cfg80211_match_set *cfg_match = &match_sets[i];
3265 wmi_match->ssid_len = cfg_match->ssid.ssid_len;
3266 memcpy(wmi_match->ssid, cfg_match->ssid.ssid,
3267 min_t(u8, wmi_match->ssid_len, WMI_MAX_SSID_LEN));
3268 wmi_match->rssi_threshold = S8_MIN;
3269 if (cfg_match->rssi_thold >= S8_MIN &&
3270 cfg_match->rssi_thold <= S8_MAX)
3271 wmi_match->rssi_threshold = cfg_match->rssi_thold;
3273 for (j = 0; j < n_ssids; j++)
3274 if (wmi_match->ssid_len == ssids[j].ssid_len &&
3275 memcmp(wmi_match->ssid, ssids[j].ssid,
3276 wmi_match->ssid_len) == 0)
3277 wmi_match->add_ssid_to_probe = true;
3282 wmi_sched_scan_set_channels(struct wil6210_priv *wil,
3283 struct wmi_start_sched_scan_cmd *cmd,
3285 struct ieee80211_channel **channels)
3289 if (n_channels > WMI_MAX_CHANNEL_NUM) {
3290 wil_dbg_wmi(wil, "too many channels (%d), use first %d\n",
3291 n_channels, WMI_MAX_CHANNEL_NUM);
3292 n_channels = WMI_MAX_CHANNEL_NUM;
3294 cmd->num_of_channels = n_channels;
3296 for (i = 0; i < n_channels; i++) {
3297 struct ieee80211_channel *cfg_chan = channels[i];
3299 cmd->channel_list[i] = cfg_chan->hw_value - 1;
3304 wmi_sched_scan_set_plans(struct wil6210_priv *wil,
3305 struct wmi_start_sched_scan_cmd *cmd,
3306 struct cfg80211_sched_scan_plan *scan_plans,
3311 if (n_scan_plans > WMI_MAX_PLANS_NUM) {
3312 wil_dbg_wmi(wil, "too many plans (%d), use first %d\n",
3313 n_scan_plans, WMI_MAX_PLANS_NUM);
3314 n_scan_plans = WMI_MAX_PLANS_NUM;
3317 for (i = 0; i < n_scan_plans; i++) {
3318 struct cfg80211_sched_scan_plan *cfg_plan = &scan_plans[i];
3320 cmd->scan_plans[i].interval_sec =
3321 cpu_to_le16(cfg_plan->interval);
3322 cmd->scan_plans[i].num_of_iterations =
3323 cpu_to_le16(cfg_plan->iterations);
3327 int wmi_start_sched_scan(struct wil6210_priv *wil,
3328 struct cfg80211_sched_scan_request *request)
3330 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
3332 struct wmi_start_sched_scan_cmd cmd = {
3333 .min_rssi_threshold = S8_MIN,
3334 .initial_delay_sec = cpu_to_le16(request->delay),
3337 struct wmi_cmd_hdr wmi;
3338 struct wmi_start_sched_scan_event evt;
3339 } __packed reply = {
3340 .evt = {.result = WMI_PNO_REJECT},
3343 if (!test_bit(WMI_FW_CAPABILITY_PNO, wil->fw_capabilities))
3346 if (request->min_rssi_thold >= S8_MIN &&
3347 request->min_rssi_thold <= S8_MAX)
3348 cmd.min_rssi_threshold = request->min_rssi_thold;
3350 wmi_sched_scan_set_ssids(wil, &cmd, request->ssids, request->n_ssids,
3351 request->match_sets, request->n_match_sets);
3352 wmi_sched_scan_set_channels(wil, &cmd,
3353 request->n_channels, request->channels);
3354 wmi_sched_scan_set_plans(wil, &cmd,
3355 request->scan_plans, request->n_scan_plans);
3357 rc = wmi_call(wil, WMI_START_SCHED_SCAN_CMDID, vif->mid,
3359 WMI_START_SCHED_SCAN_EVENTID, &reply, sizeof(reply),
3360 WIL_WMI_CALL_GENERAL_TO_MS);
3364 if (reply.evt.result != WMI_PNO_SUCCESS) {
3365 wil_err(wil, "start sched scan failed, result %d\n",
3373 int wmi_stop_sched_scan(struct wil6210_priv *wil)
3375 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
3378 struct wmi_cmd_hdr wmi;
3379 struct wmi_stop_sched_scan_event evt;
3380 } __packed reply = {
3381 .evt = {.result = WMI_PNO_REJECT},
3384 if (!test_bit(WMI_FW_CAPABILITY_PNO, wil->fw_capabilities))
3387 rc = wmi_call(wil, WMI_STOP_SCHED_SCAN_CMDID, vif->mid, NULL, 0,
3388 WMI_STOP_SCHED_SCAN_EVENTID, &reply, sizeof(reply),
3389 WIL_WMI_CALL_GENERAL_TO_MS);
3393 if (reply.evt.result != WMI_PNO_SUCCESS) {
3394 wil_err(wil, "stop sched scan failed, result %d\n",
3402 int wmi_mgmt_tx(struct wil6210_vif *vif, const u8 *buf, size_t len)
3405 struct wil6210_priv *wil = vif_to_wil(vif);
3406 struct ieee80211_mgmt *mgmt_frame = (void *)buf;
3407 struct wmi_sw_tx_req_cmd *cmd;
3409 struct wmi_cmd_hdr wmi;
3410 struct wmi_sw_tx_complete_event evt;
3412 .evt = {.status = WMI_FW_STATUS_FAILURE},
3416 wil_dbg_misc(wil, "mgmt_tx mid %d\n", vif->mid);
3417 wil_hex_dump_misc("mgmt tx frame ", DUMP_PREFIX_OFFSET, 16, 1, buf,
3420 if (len < sizeof(struct ieee80211_hdr_3addr))
3423 total = sizeof(*cmd) + len;
3425 wil_err(wil, "mgmt_tx invalid len %zu\n", len);
3429 cmd = kmalloc(total, GFP_KERNEL);
3433 memcpy(cmd->dst_mac, mgmt_frame->da, WMI_MAC_LEN);
3434 cmd->len = cpu_to_le16(len);
3435 memcpy(cmd->payload, buf, len);
3437 rc = wmi_call(wil, WMI_SW_TX_REQ_CMDID, vif->mid, cmd, total,
3438 WMI_SW_TX_COMPLETE_EVENTID, &evt, sizeof(evt), 2000);
3439 if (!rc && evt.evt.status != WMI_FW_STATUS_SUCCESS) {
3440 wil_err(wil, "mgmt_tx failed with status %d\n", evt.evt.status);
3449 int wmi_mgmt_tx_ext(struct wil6210_vif *vif, const u8 *buf, size_t len,
3450 u8 channel, u16 duration_ms)
3453 struct wil6210_priv *wil = vif_to_wil(vif);
3454 struct ieee80211_mgmt *mgmt_frame = (void *)buf;
3455 struct wmi_sw_tx_req_ext_cmd *cmd;
3457 struct wmi_cmd_hdr wmi;
3458 struct wmi_sw_tx_complete_event evt;
3460 .evt = {.status = WMI_FW_STATUS_FAILURE},
3464 wil_dbg_wmi(wil, "mgmt_tx_ext mid %d channel %d duration %d\n",
3465 vif->mid, channel, duration_ms);
3466 wil_hex_dump_wmi("mgmt_tx_ext frame ", DUMP_PREFIX_OFFSET, 16, 1, buf,
3469 if (len < sizeof(struct ieee80211_hdr_3addr)) {
3470 wil_err(wil, "short frame. len %zu\n", len);
3474 total = sizeof(*cmd) + len;
3476 wil_err(wil, "mgmt_tx_ext invalid len %zu\n", len);
3480 cmd = kzalloc(total, GFP_KERNEL);
3484 memcpy(cmd->dst_mac, mgmt_frame->da, WMI_MAC_LEN);
3485 cmd->len = cpu_to_le16(len);
3486 memcpy(cmd->payload, buf, len);
3487 cmd->channel = channel - 1;
3488 cmd->duration_ms = cpu_to_le16(duration_ms);
3490 rc = wmi_call(wil, WMI_SW_TX_REQ_EXT_CMDID, vif->mid, cmd, total,
3491 WMI_SW_TX_COMPLETE_EVENTID, &evt, sizeof(evt), 2000);
3492 if (!rc && evt.evt.status != WMI_FW_STATUS_SUCCESS) {
3493 wil_err(wil, "mgmt_tx_ext failed with status %d\n",
3503 int wil_wmi_tx_sring_cfg(struct wil6210_priv *wil, int ring_id)
3506 struct wil6210_vif *vif = ndev_to_vif(wil->main_ndev);
3507 struct wil_status_ring *sring = &wil->srings[ring_id];
3508 struct wmi_tx_status_ring_add_cmd cmd = {
3510 .ring_size = cpu_to_le16(sring->size),
3512 .irq_index = WIL_TX_STATUS_IRQ_IDX
3515 struct wmi_cmd_hdr hdr;
3516 struct wmi_tx_status_ring_cfg_done_event evt;
3517 } __packed reply = {
3518 .evt = {.status = WMI_FW_STATUS_FAILURE},
3521 cmd.ring_cfg.ring_id = ring_id;
3523 cmd.ring_cfg.ring_mem_base = cpu_to_le64(sring->pa);
3524 rc = wmi_call(wil, WMI_TX_STATUS_RING_ADD_CMDID, vif->mid, &cmd,
3525 sizeof(cmd), WMI_TX_STATUS_RING_CFG_DONE_EVENTID,
3526 &reply, sizeof(reply), WIL_WMI_CALL_GENERAL_TO_MS);
3528 wil_err(wil, "TX_STATUS_RING_ADD_CMD failed, rc %d\n", rc);
3532 if (reply.evt.status != WMI_FW_STATUS_SUCCESS) {
3533 wil_err(wil, "TX_STATUS_RING_ADD_CMD failed, status %d\n",
3538 sring->hwtail = le32_to_cpu(reply.evt.ring_tail_ptr);
3543 int wil_wmi_cfg_def_rx_offload(struct wil6210_priv *wil, u16 max_rx_pl_per_desc)
3545 struct net_device *ndev = wil->main_ndev;
3546 struct wil6210_vif *vif = ndev_to_vif(ndev);
3548 struct wmi_cfg_def_rx_offload_cmd cmd = {
3549 .max_msdu_size = cpu_to_le16(wil_mtu2macbuf(WIL_MAX_ETH_MTU)),
3550 .max_rx_pl_per_desc = cpu_to_le16(max_rx_pl_per_desc),
3551 .decap_trans_type = WMI_DECAP_TYPE_802_3,
3552 .l2_802_3_offload_ctrl = 0,
3553 .l3_l4_ctrl = 1 << L3_L4_CTRL_TCPIP_CHECKSUM_EN_POS,
3556 struct wmi_cmd_hdr hdr;
3557 struct wmi_cfg_def_rx_offload_done_event evt;
3558 } __packed reply = {
3559 .evt = {.status = WMI_FW_STATUS_FAILURE},
3562 rc = wmi_call(wil, WMI_CFG_DEF_RX_OFFLOAD_CMDID, vif->mid, &cmd,
3563 sizeof(cmd), WMI_CFG_DEF_RX_OFFLOAD_DONE_EVENTID, &reply,
3564 sizeof(reply), WIL_WMI_CALL_GENERAL_TO_MS);
3566 wil_err(wil, "WMI_CFG_DEF_RX_OFFLOAD_CMD failed, rc %d\n", rc);
3570 if (reply.evt.status != WMI_FW_STATUS_SUCCESS) {
3571 wil_err(wil, "WMI_CFG_DEF_RX_OFFLOAD_CMD failed, status %d\n",
3579 int wil_wmi_rx_sring_add(struct wil6210_priv *wil, u16 ring_id)
3581 struct net_device *ndev = wil->main_ndev;
3582 struct wil6210_vif *vif = ndev_to_vif(ndev);
3583 struct wil_status_ring *sring = &wil->srings[ring_id];
3585 struct wmi_rx_status_ring_add_cmd cmd = {
3587 .ring_size = cpu_to_le16(sring->size),
3590 .rx_msg_type = wil->use_compressed_rx_status ?
3591 WMI_RX_MSG_TYPE_COMPRESSED :
3592 WMI_RX_MSG_TYPE_EXTENDED,
3593 .irq_index = WIL_RX_STATUS_IRQ_IDX,
3596 struct wmi_cmd_hdr hdr;
3597 struct wmi_rx_status_ring_cfg_done_event evt;
3598 } __packed reply = {
3599 .evt = {.status = WMI_FW_STATUS_FAILURE},
3602 cmd.ring_cfg.ring_mem_base = cpu_to_le64(sring->pa);
3603 rc = wmi_call(wil, WMI_RX_STATUS_RING_ADD_CMDID, vif->mid, &cmd,
3604 sizeof(cmd), WMI_RX_STATUS_RING_CFG_DONE_EVENTID, &reply,
3605 sizeof(reply), WIL_WMI_CALL_GENERAL_TO_MS);
3607 wil_err(wil, "RX_STATUS_RING_ADD_CMD failed, rc %d\n", rc);
3611 if (reply.evt.status != WMI_FW_STATUS_SUCCESS) {
3612 wil_err(wil, "RX_STATUS_RING_ADD_CMD failed, status %d\n",
3617 sring->hwtail = le32_to_cpu(reply.evt.ring_tail_ptr);
3622 int wil_wmi_rx_desc_ring_add(struct wil6210_priv *wil, int status_ring_id)
3624 struct net_device *ndev = wil->main_ndev;
3625 struct wil6210_vif *vif = ndev_to_vif(ndev);
3626 struct wil_ring *ring = &wil->ring_rx;
3628 struct wmi_rx_desc_ring_add_cmd cmd = {
3630 .ring_size = cpu_to_le16(ring->size),
3631 .ring_id = WIL_RX_DESC_RING_ID,
3633 .status_ring_id = status_ring_id,
3634 .irq_index = WIL_RX_STATUS_IRQ_IDX,
3637 struct wmi_cmd_hdr hdr;
3638 struct wmi_rx_desc_ring_cfg_done_event evt;
3639 } __packed reply = {
3640 .evt = {.status = WMI_FW_STATUS_FAILURE},
3643 cmd.ring_cfg.ring_mem_base = cpu_to_le64(ring->pa);
3644 cmd.sw_tail_host_addr = cpu_to_le64(ring->edma_rx_swtail.pa);
3645 rc = wmi_call(wil, WMI_RX_DESC_RING_ADD_CMDID, vif->mid, &cmd,
3646 sizeof(cmd), WMI_RX_DESC_RING_CFG_DONE_EVENTID, &reply,
3647 sizeof(reply), WIL_WMI_CALL_GENERAL_TO_MS);
3649 wil_err(wil, "WMI_RX_DESC_RING_ADD_CMD failed, rc %d\n", rc);
3653 if (reply.evt.status != WMI_FW_STATUS_SUCCESS) {
3654 wil_err(wil, "WMI_RX_DESC_RING_ADD_CMD failed, status %d\n",
3659 ring->hwtail = le32_to_cpu(reply.evt.ring_tail_ptr);
3664 int wil_wmi_tx_desc_ring_add(struct wil6210_vif *vif, int ring_id, int cid,
3667 struct wil6210_priv *wil = vif_to_wil(vif);
3668 int sring_id = wil->tx_sring_idx; /* there is only one TX sring */
3670 struct wil_ring *ring = &wil->ring_tx[ring_id];
3671 struct wil_ring_tx_data *txdata = &wil->ring_tx_data[ring_id];
3672 struct wmi_tx_desc_ring_add_cmd cmd = {
3674 .ring_size = cpu_to_le16(ring->size),
3677 .status_ring_id = sring_id,
3680 .encap_trans_type = WMI_VRING_ENC_TYPE_802_3,
3681 .max_msdu_size = cpu_to_le16(wil_mtu2macbuf(mtu_max)),
3683 .priority = cpu_to_le16(0),
3684 .timeslot_us = cpu_to_le16(0xfff),
3688 struct wmi_cmd_hdr hdr;
3689 struct wmi_tx_desc_ring_cfg_done_event evt;
3690 } __packed reply = {
3691 .evt = {.status = WMI_FW_STATUS_FAILURE},
3694 cmd.ring_cfg.ring_mem_base = cpu_to_le64(ring->pa);
3695 rc = wmi_call(wil, WMI_TX_DESC_RING_ADD_CMDID, vif->mid, &cmd,
3696 sizeof(cmd), WMI_TX_DESC_RING_CFG_DONE_EVENTID, &reply,
3697 sizeof(reply), WIL_WMI_CALL_GENERAL_TO_MS);
3699 wil_err(wil, "WMI_TX_DESC_RING_ADD_CMD failed, rc %d\n", rc);
3703 if (reply.evt.status != WMI_FW_STATUS_SUCCESS) {
3704 wil_err(wil, "WMI_TX_DESC_RING_ADD_CMD failed, status %d\n",
3709 spin_lock_bh(&txdata->lock);
3710 ring->hwtail = le32_to_cpu(reply.evt.ring_tail_ptr);
3711 txdata->mid = vif->mid;
3712 txdata->enabled = 1;
3713 spin_unlock_bh(&txdata->lock);
3718 int wil_wmi_bcast_desc_ring_add(struct wil6210_vif *vif, int ring_id)
3720 struct wil6210_priv *wil = vif_to_wil(vif);
3721 struct wil_ring *ring = &wil->ring_tx[ring_id];
3723 struct wmi_bcast_desc_ring_add_cmd cmd = {
3725 .ring_size = cpu_to_le16(ring->size),
3728 .status_ring_id = wil->tx_sring_idx,
3729 .encap_trans_type = WMI_VRING_ENC_TYPE_802_3,
3732 struct wmi_cmd_hdr hdr;
3733 struct wmi_rx_desc_ring_cfg_done_event evt;
3734 } __packed reply = {
3735 .evt = {.status = WMI_FW_STATUS_FAILURE},
3737 struct wil_ring_tx_data *txdata = &wil->ring_tx_data[ring_id];
3739 cmd.ring_cfg.ring_mem_base = cpu_to_le64(ring->pa);
3740 rc = wmi_call(wil, WMI_BCAST_DESC_RING_ADD_CMDID, vif->mid, &cmd,
3741 sizeof(cmd), WMI_TX_DESC_RING_CFG_DONE_EVENTID, &reply,
3742 sizeof(reply), WIL_WMI_CALL_GENERAL_TO_MS);
3744 wil_err(wil, "WMI_BCAST_DESC_RING_ADD_CMD failed, rc %d\n", rc);
3748 if (reply.evt.status != WMI_FW_STATUS_SUCCESS) {
3749 wil_err(wil, "Broadcast Tx config failed, status %d\n",
3754 spin_lock_bh(&txdata->lock);
3755 ring->hwtail = le32_to_cpu(reply.evt.ring_tail_ptr);
3756 txdata->mid = vif->mid;
3757 txdata->enabled = 1;
3758 spin_unlock_bh(&txdata->lock);
3763 int wmi_link_stats_cfg(struct wil6210_vif *vif, u32 type, u8 cid, u32 interval)
3765 struct wil6210_priv *wil = vif_to_wil(vif);
3766 struct wmi_link_stats_cmd cmd = {
3767 .record_type_mask = cpu_to_le32(type),
3769 .action = WMI_LINK_STATS_SNAPSHOT,
3770 .interval_msec = cpu_to_le32(interval),
3773 struct wmi_cmd_hdr wmi;
3774 struct wmi_link_stats_config_done_event evt;
3775 } __packed reply = {
3776 .evt = {.status = WMI_FW_STATUS_FAILURE},
3780 rc = wmi_call(wil, WMI_LINK_STATS_CMDID, vif->mid, &cmd, sizeof(cmd),
3781 WMI_LINK_STATS_CONFIG_DONE_EVENTID, &reply,
3782 sizeof(reply), WIL_WMI_CALL_GENERAL_TO_MS);
3784 wil_err(wil, "WMI_LINK_STATS_CMDID failed, rc %d\n", rc);
3788 if (reply.evt.status != WMI_FW_STATUS_SUCCESS) {
3789 wil_err(wil, "Link statistics config failed, status %d\n",
OSDN Git Service
