1 2 /* 3 * Copyright (c) 2011 Atheros Communications Inc. 4 * 5 * Permission to use, copy, modify, and/or distribute this software for any 6 * purpose with or without fee is hereby granted, provided that the above 7 * copyright notice and this permission notice appear in all copies. 8 * 9 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES 10 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF 11 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR 12 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES 13 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN 14 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF 15 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. 16 */ 17 18 #include <linux/moduleparam.h> 19 #include <linux/errno.h> 20 #include <linux/of.h> 21 #include <linux/mmc/sdio_func.h> 22 #include "core.h" 23 #include "cfg80211.h" 24 #include "target.h" 25 #include "debug.h" 26 #include "hif-ops.h" 27 28 unsigned int debug_mask; 29 static unsigned int testmode; 30 static bool suspend_cutpower; 31 32 module_param(debug_mask, uint, 0644); 33 module_param(testmode, uint, 0644); 34 module_param(suspend_cutpower, bool, 0444); 35 36 /* 37 * Include definitions here that can be used to tune the WLAN module 38 * behavior. Different customers can tune the behavior as per their needs, 39 * here. 40 */ 41 42 /* 43 * This configuration item enable/disable keepalive support. 44 * Keepalive support: In the absence of any data traffic to AP, null 45 * frames will be sent to the AP at periodic interval, to keep the association 46 * active. This configuration item defines the periodic interval. 47 * Use value of zero to disable keepalive support 48 * Default: 60 seconds 49 */ 50 #define WLAN_CONFIG_KEEP_ALIVE_INTERVAL 60 51 52 /* 53 * This configuration item sets the value of disconnect timeout 54 * Firmware delays sending the disconnec event to the host for this 55 * timeout after is gets disconnected from the current AP. 56 * If the firmware successly roams within the disconnect timeout 57 * it sends a new connect event 58 */ 59 #define WLAN_CONFIG_DISCONNECT_TIMEOUT 10 60 61 #define CONFIG_AR600x_DEBUG_UART_TX_PIN 8 62 63 #define ATH6KL_DATA_OFFSET 64 64 struct sk_buff *ath6kl_buf_alloc(int size) 65 { 66 struct sk_buff *skb; 67 u16 reserved; 68 69 /* Add chacheline space at front and back of buffer */ 70 reserved = (2 * L1_CACHE_BYTES) + ATH6KL_DATA_OFFSET + 71 sizeof(struct htc_packet) + ATH6KL_HTC_ALIGN_BYTES; 72 skb = dev_alloc_skb(size + reserved); 73 74 if (skb) 75 skb_reserve(skb, reserved - L1_CACHE_BYTES); 76 return skb; 77 } 78 79 void ath6kl_init_profile_info(struct ath6kl_vif *vif) 80 { 81 vif->ssid_len = 0; 82 memset(vif->ssid, 0, sizeof(vif->ssid)); 83 84 vif->dot11_auth_mode = OPEN_AUTH; 85 vif->auth_mode = NONE_AUTH; 86 vif->prwise_crypto = NONE_CRYPT; 87 vif->prwise_crypto_len = 0; 88 vif->grp_crypto = NONE_CRYPT; 89 vif->grp_crypto_len = 0; 90 memset(vif->wep_key_list, 0, sizeof(vif->wep_key_list)); 91 memset(vif->req_bssid, 0, sizeof(vif->req_bssid)); 92 memset(vif->bssid, 0, sizeof(vif->bssid)); 93 vif->bss_ch = 0; 94 } 95 96 static int ath6kl_set_host_app_area(struct ath6kl *ar) 97 { 98 u32 address, data; 99 struct host_app_area host_app_area; 100 101 /* Fetch the address of the host_app_area_s 102 * instance in the host interest area */ 103 address = ath6kl_get_hi_item_addr(ar, HI_ITEM(hi_app_host_interest)); 104 address = TARG_VTOP(ar->target_type, address); 105 106 if (ath6kl_diag_read32(ar, address, &data)) 107 return -EIO; 108 109 address = TARG_VTOP(ar->target_type, data); 110 host_app_area.wmi_protocol_ver = cpu_to_le32(WMI_PROTOCOL_VERSION); 111 if (ath6kl_diag_write(ar, address, (u8 *) &host_app_area, 112 sizeof(struct host_app_area))) 113 return -EIO; 114 115 return 0; 116 } 117 118 static inline void set_ac2_ep_map(struct ath6kl *ar, 119 u8 ac, 120 enum htc_endpoint_id ep) 121 { 122 ar->ac2ep_map[ac] = ep; 123 ar->ep2ac_map[ep] = ac; 124 } 125 126 /* connect to a service */ 127 static int ath6kl_connectservice(struct ath6kl *ar, 128 struct htc_service_connect_req *con_req, 129 char *desc) 130 { 131 int status; 132 struct htc_service_connect_resp response; 133 134 memset(&response, 0, sizeof(response)); 135 136 status = ath6kl_htc_conn_service(ar->htc_target, con_req, &response); 137 if (status) { 138 ath6kl_err("failed to connect to %s service status:%d\n", 139 desc, status); 140 return status; 141 } 142 143 switch (con_req->svc_id) { 144 case WMI_CONTROL_SVC: 145 if (test_bit(WMI_ENABLED, &ar->flag)) 146 ath6kl_wmi_set_control_ep(ar->wmi, response.endpoint); 147 ar->ctrl_ep = response.endpoint; 148 break; 149 case WMI_DATA_BE_SVC: 150 set_ac2_ep_map(ar, WMM_AC_BE, response.endpoint); 151 break; 152 case WMI_DATA_BK_SVC: 153 set_ac2_ep_map(ar, WMM_AC_BK, response.endpoint); 154 break; 155 case WMI_DATA_VI_SVC: 156 set_ac2_ep_map(ar, WMM_AC_VI, response.endpoint); 157 break; 158 case WMI_DATA_VO_SVC: 159 set_ac2_ep_map(ar, WMM_AC_VO, response.endpoint); 160 break; 161 default: 162 ath6kl_err("service id is not mapped %d\n", con_req->svc_id); 163 return -EINVAL; 164 } 165 166 return 0; 167 } 168 169 static int ath6kl_init_service_ep(struct ath6kl *ar) 170 { 171 struct htc_service_connect_req connect; 172 173 memset(&connect, 0, sizeof(connect)); 174 175 /* these fields are the same for all service endpoints */ 176 connect.ep_cb.rx = ath6kl_rx; 177 connect.ep_cb.rx_refill = ath6kl_rx_refill; 178 connect.ep_cb.tx_full = ath6kl_tx_queue_full; 179 180 /* 181 * Set the max queue depth so that our ath6kl_tx_queue_full handler 182 * gets called. 183 */ 184 connect.max_txq_depth = MAX_DEFAULT_SEND_QUEUE_DEPTH; 185 connect.ep_cb.rx_refill_thresh = ATH6KL_MAX_RX_BUFFERS / 4; 186 if (!connect.ep_cb.rx_refill_thresh) 187 connect.ep_cb.rx_refill_thresh++; 188 189 /* connect to control service */ 190 connect.svc_id = WMI_CONTROL_SVC; 191 if (ath6kl_connectservice(ar, &connect, "WMI CONTROL")) 192 return -EIO; 193 194 connect.flags |= HTC_FLGS_TX_BNDL_PAD_EN; 195 196 /* 197 * Limit the HTC message size on the send path, although e can 198 * receive A-MSDU frames of 4K, we will only send ethernet-sized 199 * (802.3) frames on the send path. 200 */ 201 connect.max_rxmsg_sz = WMI_MAX_TX_DATA_FRAME_LENGTH; 202 203 /* 204 * To reduce the amount of committed memory for larger A_MSDU 205 * frames, use the recv-alloc threshold mechanism for larger 206 * packets. 207 */ 208 connect.ep_cb.rx_alloc_thresh = ATH6KL_BUFFER_SIZE; 209 connect.ep_cb.rx_allocthresh = ath6kl_alloc_amsdu_rxbuf; 210 211 /* 212 * For the remaining data services set the connection flag to 213 * reduce dribbling, if configured to do so. 214 */ 215 connect.conn_flags |= HTC_CONN_FLGS_REDUCE_CRED_DRIB; 216 connect.conn_flags &= ~HTC_CONN_FLGS_THRESH_MASK; 217 connect.conn_flags |= HTC_CONN_FLGS_THRESH_LVL_HALF; 218 219 connect.svc_id = WMI_DATA_BE_SVC; 220 221 if (ath6kl_connectservice(ar, &connect, "WMI DATA BE")) 222 return -EIO; 223 224 /* connect to back-ground map this to WMI LOW_PRI */ 225 connect.svc_id = WMI_DATA_BK_SVC; 226 if (ath6kl_connectservice(ar, &connect, "WMI DATA BK")) 227 return -EIO; 228 229 /* connect to Video service, map this to to HI PRI */ 230 connect.svc_id = WMI_DATA_VI_SVC; 231 if (ath6kl_connectservice(ar, &connect, "WMI DATA VI")) 232 return -EIO; 233 234 /* 235 * Connect to VO service, this is currently not mapped to a WMI 236 * priority stream due to historical reasons. WMI originally 237 * defined 3 priorities over 3 mailboxes We can change this when 238 * WMI is reworked so that priorities are not dependent on 239 * mailboxes. 240 */ 241 connect.svc_id = WMI_DATA_VO_SVC; 242 if (ath6kl_connectservice(ar, &connect, "WMI DATA VO")) 243 return -EIO; 244 245 return 0; 246 } 247 248 void ath6kl_init_control_info(struct ath6kl_vif *vif) 249 { 250 ath6kl_init_profile_info(vif); 251 vif->def_txkey_index = 0; 252 memset(vif->wep_key_list, 0, sizeof(vif->wep_key_list)); 253 vif->ch_hint = 0; 254 } 255 256 /* 257 * Set HTC/Mbox operational parameters, this can only be called when the 258 * target is in the BMI phase. 259 */ 260 static int ath6kl_set_htc_params(struct ath6kl *ar, u32 mbox_isr_yield_val, 261 u8 htc_ctrl_buf) 262 { 263 int status; 264 u32 blk_size; 265 266 blk_size = ar->mbox_info.block_size; 267 268 if (htc_ctrl_buf) 269 blk_size |= ((u32)htc_ctrl_buf) << 16; 270 271 /* set the host interest area for the block size */ 272 status = ath6kl_bmi_write(ar, 273 ath6kl_get_hi_item_addr(ar, 274 HI_ITEM(hi_mbox_io_block_sz)), 275 (u8 *)&blk_size, 276 4); 277 if (status) { 278 ath6kl_err("bmi_write_memory for IO block size failed\n"); 279 goto out; 280 } 281 282 ath6kl_dbg(ATH6KL_DBG_TRC, "block size set: %d (target addr:0x%X)\n", 283 blk_size, 284 ath6kl_get_hi_item_addr(ar, HI_ITEM(hi_mbox_io_block_sz))); 285 286 if (mbox_isr_yield_val) { 287 /* set the host interest area for the mbox ISR yield limit */ 288 status = ath6kl_bmi_write(ar, 289 ath6kl_get_hi_item_addr(ar, 290 HI_ITEM(hi_mbox_isr_yield_limit)), 291 (u8 *)&mbox_isr_yield_val, 292 4); 293 if (status) { 294 ath6kl_err("bmi_write_memory for yield limit failed\n"); 295 goto out; 296 } 297 } 298 299 out: 300 return status; 301 } 302 303 static int ath6kl_target_config_wlan_params(struct ath6kl *ar, int idx) 304 { 305 int status = 0; 306 int ret; 307 308 /* 309 * Configure the device for rx dot11 header rules. "0,0" are the 310 * default values. Required if checksum offload is needed. Set 311 * RxMetaVersion to 2. 312 */ 313 if (ath6kl_wmi_set_rx_frame_format_cmd(ar->wmi, idx, 314 ar->rx_meta_ver, 0, 0)) { 315 ath6kl_err("unable to set the rx frame format\n"); 316 status = -EIO; 317 } 318 319 if (ar->conf_flags & ATH6KL_CONF_IGNORE_PS_FAIL_EVT_IN_SCAN) 320 if ((ath6kl_wmi_pmparams_cmd(ar->wmi, idx, 0, 1, 0, 0, 1, 321 IGNORE_POWER_SAVE_FAIL_EVENT_DURING_SCAN)) != 0) { 322 ath6kl_err("unable to set power save fail event policy\n"); 323 status = -EIO; 324 } 325 326 if (!(ar->conf_flags & ATH6KL_CONF_IGNORE_ERP_BARKER)) 327 if ((ath6kl_wmi_set_lpreamble_cmd(ar->wmi, idx, 0, 328 WMI_DONOT_IGNORE_BARKER_IN_ERP)) != 0) { 329 ath6kl_err("unable to set barker preamble policy\n"); 330 status = -EIO; 331 } 332 333 if (ath6kl_wmi_set_keepalive_cmd(ar->wmi, idx, 334 WLAN_CONFIG_KEEP_ALIVE_INTERVAL)) { 335 ath6kl_err("unable to set keep alive interval\n"); 336 status = -EIO; 337 } 338 339 if (ath6kl_wmi_disctimeout_cmd(ar->wmi, idx, 340 WLAN_CONFIG_DISCONNECT_TIMEOUT)) { 341 ath6kl_err("unable to set disconnect timeout\n"); 342 status = -EIO; 343 } 344 345 if (!(ar->conf_flags & ATH6KL_CONF_ENABLE_TX_BURST)) 346 if (ath6kl_wmi_set_wmm_txop(ar->wmi, idx, WMI_TXOP_DISABLED)) { 347 ath6kl_err("unable to set txop bursting\n"); 348 status = -EIO; 349 } 350 351 /* 352 * FIXME: Make sure p2p configurations are not applied to 353 * non-p2p capable interfaces when multivif support is enabled. 354 */ 355 if (ar->p2p) { 356 ret = ath6kl_wmi_info_req_cmd(ar->wmi, idx, 357 P2P_FLAG_CAPABILITIES_REQ | 358 P2P_FLAG_MACADDR_REQ | 359 P2P_FLAG_HMODEL_REQ); 360 if (ret) { 361 ath6kl_dbg(ATH6KL_DBG_TRC, "failed to request P2P " 362 "capabilities (%d) - assuming P2P not " 363 "supported\n", ret); 364 ar->p2p = 0; 365 } 366 } 367 368 /* 369 * FIXME: Make sure p2p configurations are not applied to 370 * non-p2p capable interfaces when multivif support is enabled. 371 */ 372 if (ar->p2p) { 373 /* Enable Probe Request reporting for P2P */ 374 ret = ath6kl_wmi_probe_report_req_cmd(ar->wmi, idx, true); 375 if (ret) { 376 ath6kl_dbg(ATH6KL_DBG_TRC, "failed to enable Probe " 377 "Request reporting (%d)\n", ret); 378 } 379 } 380 381 return status; 382 } 383 384 int ath6kl_configure_target(struct ath6kl *ar) 385 { 386 u32 param, ram_reserved_size; 387 u8 fw_iftype, fw_mode = 0, fw_submode = 0; 388 int i; 389 390 /* 391 * Note: Even though the firmware interface type is 392 * chosen as BSS_STA for all three interfaces, can 393 * be configured to IBSS/AP as long as the fw submode 394 * remains normal mode (0 - AP, STA and IBSS). But 395 * due to an target assert in firmware only one interface is 396 * configured for now. 397 */ 398 fw_iftype = HI_OPTION_FW_MODE_BSS_STA; 399 400 for (i = 0; i < MAX_NUM_VIF; i++) 401 fw_mode |= fw_iftype << (i * HI_OPTION_FW_MODE_BITS); 402 403 /* 404 * By default, submodes : 405 * vif[0] - AP/STA/IBSS 406 * vif[1] - "P2P dev"/"P2P GO"/"P2P Client" 407 * vif[2] - "P2P dev"/"P2P GO"/"P2P Client" 408 */ 409 410 for (i = 0; i < ar->max_norm_iface; i++) 411 fw_submode |= HI_OPTION_FW_SUBMODE_NONE << 412 (i * HI_OPTION_FW_SUBMODE_BITS); 413 414 for (i = ar->max_norm_iface; i < MAX_NUM_VIF; i++) 415 fw_submode |= HI_OPTION_FW_SUBMODE_P2PDEV << 416 (i * HI_OPTION_FW_SUBMODE_BITS); 417 418 /* 419 * FIXME: This needs to be removed once the multivif 420 * support is enabled. 421 */ 422 if (ar->p2p) 423 fw_submode = HI_OPTION_FW_SUBMODE_P2PDEV; 424 425 param = HTC_PROTOCOL_VERSION; 426 if (ath6kl_bmi_write(ar, 427 ath6kl_get_hi_item_addr(ar, 428 HI_ITEM(hi_app_host_interest)), 429 (u8 *)¶m, 4) != 0) { 430 ath6kl_err("bmi_write_memory for htc version failed\n"); 431 return -EIO; 432 } 433 434 /* set the firmware mode to STA/IBSS/AP */ 435 param = 0; 436 437 if (ath6kl_bmi_read(ar, 438 ath6kl_get_hi_item_addr(ar, 439 HI_ITEM(hi_option_flag)), 440 (u8 *)¶m, 4) != 0) { 441 ath6kl_err("bmi_read_memory for setting fwmode failed\n"); 442 return -EIO; 443 } 444 445 param |= (MAX_NUM_VIF << HI_OPTION_NUM_DEV_SHIFT); 446 param |= fw_mode << HI_OPTION_FW_MODE_SHIFT; 447 param |= fw_submode << HI_OPTION_FW_SUBMODE_SHIFT; 448 449 param |= (0 << HI_OPTION_MAC_ADDR_METHOD_SHIFT); 450 param |= (0 << HI_OPTION_FW_BRIDGE_SHIFT); 451 452 if (ath6kl_bmi_write(ar, 453 ath6kl_get_hi_item_addr(ar, 454 HI_ITEM(hi_option_flag)), 455 (u8 *)¶m, 456 4) != 0) { 457 ath6kl_err("bmi_write_memory for setting fwmode failed\n"); 458 return -EIO; 459 } 460 461 ath6kl_dbg(ATH6KL_DBG_TRC, "firmware mode set\n"); 462 463 /* 464 * Hardcode the address use for the extended board data 465 * Ideally this should be pre-allocate by the OS at boot time 466 * But since it is a new feature and board data is loaded 467 * at init time, we have to workaround this from host. 468 * It is difficult to patch the firmware boot code, 469 * but possible in theory. 470 */ 471 472 param = ar->hw.board_ext_data_addr; 473 ram_reserved_size = ar->hw.reserved_ram_size; 474 475 if (ath6kl_bmi_write(ar, ath6kl_get_hi_item_addr(ar, 476 HI_ITEM(hi_board_ext_data)), 477 (u8 *)¶m, 4) != 0) { 478 ath6kl_err("bmi_write_memory for hi_board_ext_data failed\n"); 479 return -EIO; 480 } 481 482 if (ath6kl_bmi_write(ar, ath6kl_get_hi_item_addr(ar, 483 HI_ITEM(hi_end_ram_reserve_sz)), 484 (u8 *)&ram_reserved_size, 4) != 0) { 485 ath6kl_err("bmi_write_memory for hi_end_ram_reserve_sz failed\n"); 486 return -EIO; 487 } 488 489 /* set the block size for the target */ 490 if (ath6kl_set_htc_params(ar, MBOX_YIELD_LIMIT, 0)) 491 /* use default number of control buffers */ 492 return -EIO; 493 494 return 0; 495 } 496 497 void ath6kl_core_free(struct ath6kl *ar) 498 { 499 wiphy_free(ar->wiphy); 500 } 501 502 void ath6kl_core_cleanup(struct ath6kl *ar) 503 { 504 ath6kl_hif_power_off(ar); 505 506 destroy_workqueue(ar->ath6kl_wq); 507 508 if (ar->htc_target) 509 ath6kl_htc_cleanup(ar->htc_target); 510 511 ath6kl_cookie_cleanup(ar); 512 513 ath6kl_cleanup_amsdu_rxbufs(ar); 514 515 ath6kl_bmi_cleanup(ar); 516 517 ath6kl_debug_cleanup(ar); 518 519 kfree(ar->fw_board); 520 kfree(ar->fw_otp); 521 kfree(ar->fw); 522 kfree(ar->fw_patch); 523 524 ath6kl_deinit_ieee80211_hw(ar); 525 } 526 527 /* firmware upload */ 528 static int ath6kl_get_fw(struct ath6kl *ar, const char *filename, 529 u8 **fw, size_t *fw_len) 530 { 531 const struct firmware *fw_entry; 532 int ret; 533 534 ret = request_firmware(&fw_entry, filename, ar->dev); 535 if (ret) 536 return ret; 537 538 *fw_len = fw_entry->size; 539 *fw = kmemdup(fw_entry->data, fw_entry->size, GFP_KERNEL); 540 541 if (*fw == NULL) 542 ret = -ENOMEM; 543 544 release_firmware(fw_entry); 545 546 return ret; 547 } 548 549 #ifdef CONFIG_OF 550 static const char *get_target_ver_dir(const struct ath6kl *ar) 551 { 552 switch (ar->version.target_ver) { 553 case AR6003_REV1_VERSION: 554 return "ath6k/AR6003/hw1.0"; 555 case AR6003_REV2_VERSION: 556 return "ath6k/AR6003/hw2.0"; 557 case AR6003_REV3_VERSION: 558 return "ath6k/AR6003/hw2.1.1"; 559 } 560 ath6kl_warn("%s: unsupported target version 0x%x.\n", __func__, 561 ar->version.target_ver); 562 return NULL; 563 } 564 565 /* 566 * Check the device tree for a board-id and use it to construct 567 * the pathname to the firmware file. Used (for now) to find a 568 * fallback to the "bdata.bin" file--typically a symlink to the 569 * appropriate board-specific file. 570 */ 571 static bool check_device_tree(struct ath6kl *ar) 572 { 573 static const char *board_id_prop = "atheros,board-id"; 574 struct device_node *node; 575 char board_filename[64]; 576 const char *board_id; 577 int ret; 578 579 for_each_compatible_node(node, NULL, "atheros,ath6kl") { 580 board_id = of_get_property(node, board_id_prop, NULL); 581 if (board_id == NULL) { 582 ath6kl_warn("No \"%s\" property on %s node.\n", 583 board_id_prop, node->name); 584 continue; 585 } 586 snprintf(board_filename, sizeof(board_filename), 587 "%s/bdata.%s.bin", get_target_ver_dir(ar), board_id); 588 589 ret = ath6kl_get_fw(ar, board_filename, &ar->fw_board, 590 &ar->fw_board_len); 591 if (ret) { 592 ath6kl_err("Failed to get DT board file %s: %d\n", 593 board_filename, ret); 594 continue; 595 } 596 return true; 597 } 598 return false; 599 } 600 #else 601 static bool check_device_tree(struct ath6kl *ar) 602 { 603 return false; 604 } 605 #endif /* CONFIG_OF */ 606 607 static int ath6kl_fetch_board_file(struct ath6kl *ar) 608 { 609 const char *filename; 610 int ret; 611 612 if (ar->fw_board != NULL) 613 return 0; 614 615 switch (ar->version.target_ver) { 616 case AR6003_REV2_VERSION: 617 filename = AR6003_REV2_BOARD_DATA_FILE; 618 break; 619 case AR6004_REV1_VERSION: 620 filename = AR6004_REV1_BOARD_DATA_FILE; 621 break; 622 default: 623 filename = AR6003_REV3_BOARD_DATA_FILE; 624 break; 625 } 626 627 ret = ath6kl_get_fw(ar, filename, &ar->fw_board, 628 &ar->fw_board_len); 629 if (ret == 0) { 630 /* managed to get proper board file */ 631 return 0; 632 } 633 634 if (check_device_tree(ar)) { 635 /* got board file from device tree */ 636 return 0; 637 } 638 639 /* there was no proper board file, try to use default instead */ 640 ath6kl_warn("Failed to get board file %s (%d), trying to find default board file.\n", 641 filename, ret); 642 643 switch (ar->version.target_ver) { 644 case AR6003_REV2_VERSION: 645 filename = AR6003_REV2_DEFAULT_BOARD_DATA_FILE; 646 break; 647 case AR6004_REV1_VERSION: 648 filename = AR6004_REV1_DEFAULT_BOARD_DATA_FILE; 649 break; 650 default: 651 filename = AR6003_REV3_DEFAULT_BOARD_DATA_FILE; 652 break; 653 } 654 655 ret = ath6kl_get_fw(ar, filename, &ar->fw_board, 656 &ar->fw_board_len); 657 if (ret) { 658 ath6kl_err("Failed to get default board file %s: %d\n", 659 filename, ret); 660 return ret; 661 } 662 663 ath6kl_warn("WARNING! No proper board file was not found, instead using a default board file.\n"); 664 ath6kl_warn("Most likely your hardware won't work as specified. Install correct board file!\n"); 665 666 return 0; 667 } 668 669 static int ath6kl_fetch_otp_file(struct ath6kl *ar) 670 { 671 const char *filename; 672 int ret; 673 674 if (ar->fw_otp != NULL) 675 return 0; 676 677 switch (ar->version.target_ver) { 678 case AR6003_REV2_VERSION: 679 filename = AR6003_REV2_OTP_FILE; 680 break; 681 case AR6004_REV1_VERSION: 682 ath6kl_dbg(ATH6KL_DBG_TRC, "AR6004 doesn't need OTP file\n"); 683 return 0; 684 break; 685 default: 686 filename = AR6003_REV3_OTP_FILE; 687 break; 688 } 689 690 ret = ath6kl_get_fw(ar, filename, &ar->fw_otp, 691 &ar->fw_otp_len); 692 if (ret) { 693 ath6kl_err("Failed to get OTP file %s: %d\n", 694 filename, ret); 695 return ret; 696 } 697 698 return 0; 699 } 700 701 static int ath6kl_fetch_fw_file(struct ath6kl *ar) 702 { 703 const char *filename; 704 int ret; 705 706 if (ar->fw != NULL) 707 return 0; 708 709 if (testmode) { 710 switch (ar->version.target_ver) { 711 case AR6003_REV2_VERSION: 712 filename = AR6003_REV2_TCMD_FIRMWARE_FILE; 713 break; 714 case AR6003_REV3_VERSION: 715 filename = AR6003_REV3_TCMD_FIRMWARE_FILE; 716 break; 717 case AR6004_REV1_VERSION: 718 ath6kl_warn("testmode not supported with ar6004\n"); 719 return -EOPNOTSUPP; 720 default: 721 ath6kl_warn("unknown target version: 0x%x\n", 722 ar->version.target_ver); 723 return -EINVAL; 724 } 725 726 set_bit(TESTMODE, &ar->flag); 727 728 goto get_fw; 729 } 730 731 switch (ar->version.target_ver) { 732 case AR6003_REV2_VERSION: 733 filename = AR6003_REV2_FIRMWARE_FILE; 734 break; 735 case AR6004_REV1_VERSION: 736 filename = AR6004_REV1_FIRMWARE_FILE; 737 break; 738 default: 739 filename = AR6003_REV3_FIRMWARE_FILE; 740 break; 741 } 742 743 get_fw: 744 ret = ath6kl_get_fw(ar, filename, &ar->fw, &ar->fw_len); 745 if (ret) { 746 ath6kl_err("Failed to get firmware file %s: %d\n", 747 filename, ret); 748 return ret; 749 } 750 751 return 0; 752 } 753 754 static int ath6kl_fetch_patch_file(struct ath6kl *ar) 755 { 756 const char *filename; 757 int ret; 758 759 switch (ar->version.target_ver) { 760 case AR6003_REV2_VERSION: 761 filename = AR6003_REV2_PATCH_FILE; 762 break; 763 case AR6004_REV1_VERSION: 764 /* FIXME: implement for AR6004 */ 765 return 0; 766 break; 767 default: 768 filename = AR6003_REV3_PATCH_FILE; 769 break; 770 } 771 772 if (ar->fw_patch == NULL) { 773 ret = ath6kl_get_fw(ar, filename, &ar->fw_patch, 774 &ar->fw_patch_len); 775 if (ret) { 776 ath6kl_err("Failed to get patch file %s: %d\n", 777 filename, ret); 778 return ret; 779 } 780 } 781 782 return 0; 783 } 784 785 static int ath6kl_fetch_fw_api1(struct ath6kl *ar) 786 { 787 int ret; 788 789 ret = ath6kl_fetch_otp_file(ar); 790 if (ret) 791 return ret; 792 793 ret = ath6kl_fetch_fw_file(ar); 794 if (ret) 795 return ret; 796 797 ret = ath6kl_fetch_patch_file(ar); 798 if (ret) 799 return ret; 800 801 return 0; 802 } 803 804 static int ath6kl_fetch_fw_api2(struct ath6kl *ar) 805 { 806 size_t magic_len, len, ie_len; 807 const struct firmware *fw; 808 struct ath6kl_fw_ie *hdr; 809 const char *filename; 810 const u8 *data; 811 int ret, ie_id, i, index, bit; 812 __le32 *val; 813 814 switch (ar->version.target_ver) { 815 case AR6003_REV2_VERSION: 816 filename = AR6003_REV2_FIRMWARE_2_FILE; 817 break; 818 case AR6003_REV3_VERSION: 819 filename = AR6003_REV3_FIRMWARE_2_FILE; 820 break; 821 case AR6004_REV1_VERSION: 822 filename = AR6004_REV1_FIRMWARE_2_FILE; 823 break; 824 case AR6004_REV2_VERSION: 825 filename = AR6004_REV2_FIRMWARE_2_FILE; 826 break; 827 default: 828 return -EOPNOTSUPP; 829 } 830 831 ret = request_firmware(&fw, filename, ar->dev); 832 if (ret) 833 return ret; 834 835 data = fw->data; 836 len = fw->size; 837 838 /* magic also includes the null byte, check that as well */ 839 magic_len = strlen(ATH6KL_FIRMWARE_MAGIC) + 1; 840 841 if (len < magic_len) { 842 ret = -EINVAL; 843 goto out; 844 } 845 846 if (memcmp(data, ATH6KL_FIRMWARE_MAGIC, magic_len) != 0) { 847 ret = -EINVAL; 848 goto out; 849 } 850 851 len -= magic_len; 852 data += magic_len; 853 854 /* loop elements */ 855 while (len > sizeof(struct ath6kl_fw_ie)) { 856 /* hdr is unaligned! */ 857 hdr = (struct ath6kl_fw_ie *) data; 858 859 ie_id = le32_to_cpup(&hdr->id); 860 ie_len = le32_to_cpup(&hdr->len); 861 862 len -= sizeof(*hdr); 863 data += sizeof(*hdr); 864 865 if (len < ie_len) { 866 ret = -EINVAL; 867 goto out; 868 } 869 870 switch (ie_id) { 871 case ATH6KL_FW_IE_OTP_IMAGE: 872 ath6kl_dbg(ATH6KL_DBG_BOOT, "found otp image ie (%zd B)\n", 873 ie_len); 874 875 ar->fw_otp = kmemdup(data, ie_len, GFP_KERNEL); 876 877 if (ar->fw_otp == NULL) { 878 ret = -ENOMEM; 879 goto out; 880 } 881 882 ar->fw_otp_len = ie_len; 883 break; 884 case ATH6KL_FW_IE_FW_IMAGE: 885 ath6kl_dbg(ATH6KL_DBG_BOOT, "found fw image ie (%zd B)\n", 886 ie_len); 887 888 ar->fw = kmemdup(data, ie_len, GFP_KERNEL); 889 890 if (ar->fw == NULL) { 891 ret = -ENOMEM; 892 goto out; 893 } 894 895 ar->fw_len = ie_len; 896 break; 897 case ATH6KL_FW_IE_PATCH_IMAGE: 898 ath6kl_dbg(ATH6KL_DBG_BOOT, "found patch image ie (%zd B)\n", 899 ie_len); 900 901 ar->fw_patch = kmemdup(data, ie_len, GFP_KERNEL); 902 903 if (ar->fw_patch == NULL) { 904 ret = -ENOMEM; 905 goto out; 906 } 907 908 ar->fw_patch_len = ie_len; 909 break; 910 case ATH6KL_FW_IE_RESERVED_RAM_SIZE: 911 val = (__le32 *) data; 912 ar->hw.reserved_ram_size = le32_to_cpup(val); 913 914 ath6kl_dbg(ATH6KL_DBG_BOOT, 915 "found reserved ram size ie 0x%d\n", 916 ar->hw.reserved_ram_size); 917 break; 918 case ATH6KL_FW_IE_CAPABILITIES: 919 ath6kl_dbg(ATH6KL_DBG_BOOT, 920 "found firmware capabilities ie (%zd B)\n", 921 ie_len); 922 923 for (i = 0; i < ATH6KL_FW_CAPABILITY_MAX; i++) { 924 index = ALIGN(i, 8) / 8; 925 bit = i % 8; 926 927 if (data[index] & (1 << bit)) 928 __set_bit(i, ar->fw_capabilities); 929 } 930 931 ath6kl_dbg_dump(ATH6KL_DBG_BOOT, "capabilities", "", 932 ar->fw_capabilities, 933 sizeof(ar->fw_capabilities)); 934 break; 935 case ATH6KL_FW_IE_PATCH_ADDR: 936 if (ie_len != sizeof(*val)) 937 break; 938 939 val = (__le32 *) data; 940 ar->hw.dataset_patch_addr = le32_to_cpup(val); 941 942 ath6kl_dbg(ATH6KL_DBG_BOOT, 943 "found patch address ie 0x%d\n", 944 ar->hw.dataset_patch_addr); 945 break; 946 default: 947 ath6kl_dbg(ATH6KL_DBG_BOOT, "Unknown fw ie: %u\n", 948 le32_to_cpup(&hdr->id)); 949 break; 950 } 951 952 len -= ie_len; 953 data += ie_len; 954 }; 955 956 ret = 0; 957 out: 958 release_firmware(fw); 959 960 return ret; 961 } 962 963 static int ath6kl_fetch_firmwares(struct ath6kl *ar) 964 { 965 int ret; 966 967 ret = ath6kl_fetch_board_file(ar); 968 if (ret) 969 return ret; 970 971 ret = ath6kl_fetch_fw_api2(ar); 972 if (ret == 0) { 973 ath6kl_dbg(ATH6KL_DBG_BOOT, "using fw api 2\n"); 974 return 0; 975 } 976 977 ret = ath6kl_fetch_fw_api1(ar); 978 if (ret) 979 return ret; 980 981 ath6kl_dbg(ATH6KL_DBG_BOOT, "using fw api 1\n"); 982 983 return 0; 984 } 985 986 static int ath6kl_upload_board_file(struct ath6kl *ar) 987 { 988 u32 board_address, board_ext_address, param; 989 u32 board_data_size, board_ext_data_size; 990 int ret; 991 992 if (WARN_ON(ar->fw_board == NULL)) 993 return -ENOENT; 994 995 /* 996 * Determine where in Target RAM to write Board Data. 997 * For AR6004, host determine Target RAM address for 998 * writing board data. 999 */ 1000 if (ar->target_type == TARGET_TYPE_AR6004) { 1001 if (ar->version.target_ver == AR6004_REV1_VERSION) 1002 board_address = AR6004_REV1_BOARD_DATA_ADDRESS; 1003 else 1004 board_address = AR6004_REV2_BOARD_DATA_ADDRESS; 1005 1006 ath6kl_bmi_write(ar, 1007 ath6kl_get_hi_item_addr(ar, 1008 HI_ITEM(hi_board_data)), 1009 (u8 *) &board_address, 4); 1010 } else { 1011 ath6kl_bmi_read(ar, 1012 ath6kl_get_hi_item_addr(ar, 1013 HI_ITEM(hi_board_data)), 1014 (u8 *) &board_address, 4); 1015 } 1016 1017 /* determine where in target ram to write extended board data */ 1018 ath6kl_bmi_read(ar, 1019 ath6kl_get_hi_item_addr(ar, 1020 HI_ITEM(hi_board_ext_data)), 1021 (u8 *) &board_ext_address, 4); 1022 1023 if (ar->target_type == TARGET_TYPE_AR6003 && 1024 board_ext_address == 0) { 1025 ath6kl_err("Failed to get board file target address.\n"); 1026 return -EINVAL; 1027 } 1028 1029 switch (ar->target_type) { 1030 case TARGET_TYPE_AR6003: 1031 board_data_size = AR6003_BOARD_DATA_SZ; 1032 board_ext_data_size = AR6003_BOARD_EXT_DATA_SZ; 1033 break; 1034 case TARGET_TYPE_AR6004: 1035 board_data_size = AR6004_BOARD_DATA_SZ; 1036 board_ext_data_size = AR6004_BOARD_EXT_DATA_SZ; 1037 break; 1038 default: 1039 WARN_ON(1); 1040 return -EINVAL; 1041 break; 1042 } 1043 1044 if (board_ext_address && 1045 ar->fw_board_len == (board_data_size + board_ext_data_size)) { 1046 1047 /* write extended board data */ 1048 ath6kl_dbg(ATH6KL_DBG_BOOT, 1049 "writing extended board data to 0x%x (%d B)\n", 1050 board_ext_address, board_ext_data_size); 1051 1052 ret = ath6kl_bmi_write(ar, board_ext_address, 1053 ar->fw_board + board_data_size, 1054 board_ext_data_size); 1055 if (ret) { 1056 ath6kl_err("Failed to write extended board data: %d\n", 1057 ret); 1058 return ret; 1059 } 1060 1061 /* record that extended board data is initialized */ 1062 param = (board_ext_data_size << 16) | 1; 1063 1064 ath6kl_bmi_write(ar, 1065 ath6kl_get_hi_item_addr(ar, 1066 HI_ITEM(hi_board_ext_data_config)), 1067 (unsigned char *) ¶m, 4); 1068 } 1069 1070 if (ar->fw_board_len < board_data_size) { 1071 ath6kl_err("Too small board file: %zu\n", ar->fw_board_len); 1072 ret = -EINVAL; 1073 return ret; 1074 } 1075 1076 ath6kl_dbg(ATH6KL_DBG_BOOT, "writing board file to 0x%x (%d B)\n", 1077 board_address, board_data_size); 1078 1079 ret = ath6kl_bmi_write(ar, board_address, ar->fw_board, 1080 board_data_size); 1081 1082 if (ret) { 1083 ath6kl_err("Board file bmi write failed: %d\n", ret); 1084 return ret; 1085 } 1086 1087 /* record the fact that Board Data IS initialized */ 1088 param = 1; 1089 ath6kl_bmi_write(ar, 1090 ath6kl_get_hi_item_addr(ar, 1091 HI_ITEM(hi_board_data_initialized)), 1092 (u8 *)¶m, 4); 1093 1094 return ret; 1095 } 1096 1097 static int ath6kl_upload_otp(struct ath6kl *ar) 1098 { 1099 u32 address, param; 1100 bool from_hw = false; 1101 int ret; 1102 1103 if (ar->fw_otp == NULL) 1104 return 0; 1105 1106 address = ar->hw.app_load_addr; 1107 1108 ath6kl_dbg(ATH6KL_DBG_BOOT, "writing otp to 0x%x (%zd B)\n", address, 1109 ar->fw_otp_len); 1110 1111 ret = ath6kl_bmi_fast_download(ar, address, ar->fw_otp, 1112 ar->fw_otp_len); 1113 if (ret) { 1114 ath6kl_err("Failed to upload OTP file: %d\n", ret); 1115 return ret; 1116 } 1117 1118 /* read firmware start address */ 1119 ret = ath6kl_bmi_read(ar, 1120 ath6kl_get_hi_item_addr(ar, 1121 HI_ITEM(hi_app_start)), 1122 (u8 *) &address, sizeof(address)); 1123 1124 if (ret) { 1125 ath6kl_err("Failed to read hi_app_start: %d\n", ret); 1126 return ret; 1127 } 1128 1129 if (ar->hw.app_start_override_addr == 0) { 1130 ar->hw.app_start_override_addr = address; 1131 from_hw = true; 1132 } 1133 1134 ath6kl_dbg(ATH6KL_DBG_BOOT, "app_start_override_addr%s 0x%x\n", 1135 from_hw ? " (from hw)" : "", 1136 ar->hw.app_start_override_addr); 1137 1138 /* execute the OTP code */ 1139 ath6kl_dbg(ATH6KL_DBG_BOOT, "executing OTP at 0x%x\n", 1140 ar->hw.app_start_override_addr); 1141 param = 0; 1142 ath6kl_bmi_execute(ar, ar->hw.app_start_override_addr, ¶m); 1143 1144 return ret; 1145 } 1146 1147 static int ath6kl_upload_firmware(struct ath6kl *ar) 1148 { 1149 u32 address; 1150 int ret; 1151 1152 if (WARN_ON(ar->fw == NULL)) 1153 return 0; 1154 1155 address = ar->hw.app_load_addr; 1156 1157 ath6kl_dbg(ATH6KL_DBG_BOOT, "writing firmware to 0x%x (%zd B)\n", 1158 address, ar->fw_len); 1159 1160 ret = ath6kl_bmi_fast_download(ar, address, ar->fw, ar->fw_len); 1161 1162 if (ret) { 1163 ath6kl_err("Failed to write firmware: %d\n", ret); 1164 return ret; 1165 } 1166 1167 /* 1168 * Set starting address for firmware 1169 * Don't need to setup app_start override addr on AR6004 1170 */ 1171 if (ar->target_type != TARGET_TYPE_AR6004) { 1172 address = ar->hw.app_start_override_addr; 1173 ath6kl_bmi_set_app_start(ar, address); 1174 } 1175 return ret; 1176 } 1177 1178 static int ath6kl_upload_patch(struct ath6kl *ar) 1179 { 1180 u32 address, param; 1181 int ret; 1182 1183 if (ar->fw_patch == NULL) 1184 return 0; 1185 1186 address = ar->hw.dataset_patch_addr; 1187 1188 ath6kl_dbg(ATH6KL_DBG_BOOT, "writing patch to 0x%x (%zd B)\n", 1189 address, ar->fw_patch_len); 1190 1191 ret = ath6kl_bmi_write(ar, address, ar->fw_patch, ar->fw_patch_len); 1192 if (ret) { 1193 ath6kl_err("Failed to write patch file: %d\n", ret); 1194 return ret; 1195 } 1196 1197 param = address; 1198 ath6kl_bmi_write(ar, 1199 ath6kl_get_hi_item_addr(ar, 1200 HI_ITEM(hi_dset_list_head)), 1201 (unsigned char *) ¶m, 4); 1202 1203 return 0; 1204 } 1205 1206 static int ath6kl_init_upload(struct ath6kl *ar) 1207 { 1208 u32 param, options, sleep, address; 1209 int status = 0; 1210 1211 if (ar->target_type != TARGET_TYPE_AR6003 && 1212 ar->target_type != TARGET_TYPE_AR6004) 1213 return -EINVAL; 1214 1215 /* temporarily disable system sleep */ 1216 address = MBOX_BASE_ADDRESS + LOCAL_SCRATCH_ADDRESS; 1217 status = ath6kl_bmi_reg_read(ar, address, ¶m); 1218 if (status) 1219 return status; 1220 1221 options = param; 1222 1223 param |= ATH6KL_OPTION_SLEEP_DISABLE; 1224 status = ath6kl_bmi_reg_write(ar, address, param); 1225 if (status) 1226 return status; 1227 1228 address = RTC_BASE_ADDRESS + SYSTEM_SLEEP_ADDRESS; 1229 status = ath6kl_bmi_reg_read(ar, address, ¶m); 1230 if (status) 1231 return status; 1232 1233 sleep = param; 1234 1235 param |= SM(SYSTEM_SLEEP_DISABLE, 1); 1236 status = ath6kl_bmi_reg_write(ar, address, param); 1237 if (status) 1238 return status; 1239 1240 ath6kl_dbg(ATH6KL_DBG_TRC, "old options: %d, old sleep: %d\n", 1241 options, sleep); 1242 1243 /* program analog PLL register */ 1244 /* no need to control 40/44MHz clock on AR6004 */ 1245 if (ar->target_type != TARGET_TYPE_AR6004) { 1246 status = ath6kl_bmi_reg_write(ar, ATH6KL_ANALOG_PLL_REGISTER, 1247 0xF9104001); 1248 1249 if (status) 1250 return status; 1251 1252 /* Run at 80/88MHz by default */ 1253 param = SM(CPU_CLOCK_STANDARD, 1); 1254 1255 address = RTC_BASE_ADDRESS + CPU_CLOCK_ADDRESS; 1256 status = ath6kl_bmi_reg_write(ar, address, param); 1257 if (status) 1258 return status; 1259 } 1260 1261 param = 0; 1262 address = RTC_BASE_ADDRESS + LPO_CAL_ADDRESS; 1263 param = SM(LPO_CAL_ENABLE, 1); 1264 status = ath6kl_bmi_reg_write(ar, address, param); 1265 if (status) 1266 return status; 1267 1268 /* WAR to avoid SDIO CRC err */ 1269 if (ar->version.target_ver == AR6003_REV2_VERSION) { 1270 ath6kl_err("temporary war to avoid sdio crc error\n"); 1271 1272 param = 0x20; 1273 1274 address = GPIO_BASE_ADDRESS + GPIO_PIN10_ADDRESS; 1275 status = ath6kl_bmi_reg_write(ar, address, param); 1276 if (status) 1277 return status; 1278 1279 address = GPIO_BASE_ADDRESS + GPIO_PIN11_ADDRESS; 1280 status = ath6kl_bmi_reg_write(ar, address, param); 1281 if (status) 1282 return status; 1283 1284 address = GPIO_BASE_ADDRESS + GPIO_PIN12_ADDRESS; 1285 status = ath6kl_bmi_reg_write(ar, address, param); 1286 if (status) 1287 return status; 1288 1289 address = GPIO_BASE_ADDRESS + GPIO_PIN13_ADDRESS; 1290 status = ath6kl_bmi_reg_write(ar, address, param); 1291 if (status) 1292 return status; 1293 } 1294 1295 /* write EEPROM data to Target RAM */ 1296 status = ath6kl_upload_board_file(ar); 1297 if (status) 1298 return status; 1299 1300 /* transfer One time Programmable data */ 1301 status = ath6kl_upload_otp(ar); 1302 if (status) 1303 return status; 1304 1305 /* Download Target firmware */ 1306 status = ath6kl_upload_firmware(ar); 1307 if (status) 1308 return status; 1309 1310 status = ath6kl_upload_patch(ar); 1311 if (status) 1312 return status; 1313 1314 /* Restore system sleep */ 1315 address = RTC_BASE_ADDRESS + SYSTEM_SLEEP_ADDRESS; 1316 status = ath6kl_bmi_reg_write(ar, address, sleep); 1317 if (status) 1318 return status; 1319 1320 address = MBOX_BASE_ADDRESS + LOCAL_SCRATCH_ADDRESS; 1321 param = options | 0x20; 1322 status = ath6kl_bmi_reg_write(ar, address, param); 1323 if (status) 1324 return status; 1325 1326 /* Configure GPIO AR6003 UART */ 1327 param = CONFIG_AR600x_DEBUG_UART_TX_PIN; 1328 status = ath6kl_bmi_write(ar, 1329 ath6kl_get_hi_item_addr(ar, 1330 HI_ITEM(hi_dbg_uart_txpin)), 1331 (u8 *)¶m, 4); 1332 1333 return status; 1334 } 1335 1336 static int ath6kl_init_hw_params(struct ath6kl *ar) 1337 { 1338 switch (ar->version.target_ver) { 1339 case AR6003_REV2_VERSION: 1340 ar->hw.dataset_patch_addr = 0x57e884; 1341 ar->hw.app_load_addr = 0x543180; 1342 ar->hw.board_ext_data_addr = 0x57e500; 1343 ar->hw.reserved_ram_size = 6912; 1344 1345 /* hw2.0 needs override address hardcoded */ 1346 ar->hw.app_start_override_addr = 0x944C00; 1347 1348 break; 1349 case AR6003_REV3_VERSION: 1350 ar->hw.dataset_patch_addr = 0x57ff74; 1351 ar->hw.app_load_addr = 0x1234; 1352 ar->hw.board_ext_data_addr = 0x542330; 1353 ar->hw.reserved_ram_size = 512; 1354 break; 1355 case AR6004_REV1_VERSION: 1356 ar->hw.dataset_patch_addr = 0x57e884; 1357 ar->hw.app_load_addr = 0x1234; 1358 ar->hw.board_ext_data_addr = 0x437000; 1359 ar->hw.reserved_ram_size = 19456; 1360 break; 1361 case AR6004_REV2_VERSION: 1362 ar->hw.dataset_patch_addr = 0x57e884; 1363 ar->hw.app_load_addr = 0x1234; 1364 ar->hw.board_ext_data_addr = 0x437000; 1365 ar->hw.reserved_ram_size = 11264; 1366 break; 1367 default: 1368 ath6kl_err("Unsupported hardware version: 0x%x\n", 1369 ar->version.target_ver); 1370 return -EINVAL; 1371 } 1372 1373 ath6kl_dbg(ATH6KL_DBG_BOOT, 1374 "target_ver 0x%x target_type 0x%x dataset_patch 0x%x app_load_addr 0x%x\n", 1375 ar->version.target_ver, ar->target_type, 1376 ar->hw.dataset_patch_addr, ar->hw.app_load_addr); 1377 ath6kl_dbg(ATH6KL_DBG_BOOT, 1378 "app_start_override_addr 0x%x board_ext_data_addr 0x%x reserved_ram_size 0x%x", 1379 ar->hw.app_start_override_addr, ar->hw.board_ext_data_addr, 1380 ar->hw.reserved_ram_size); 1381 1382 return 0; 1383 } 1384 1385 int ath6kl_init_hw_start(struct ath6kl *ar) 1386 { 1387 long timeleft; 1388 int ret, i; 1389 1390 ath6kl_dbg(ATH6KL_DBG_BOOT, "hw start\n"); 1391 1392 ret = ath6kl_hif_power_on(ar); 1393 if (ret) 1394 return ret; 1395 1396 ret = ath6kl_configure_target(ar); 1397 if (ret) 1398 goto err_power_off; 1399 1400 ret = ath6kl_init_upload(ar); 1401 if (ret) 1402 goto err_power_off; 1403 1404 /* Do we need to finish the BMI phase */ 1405 /* FIXME: return error from ath6kl_bmi_done() */ 1406 if (ath6kl_bmi_done(ar)) { 1407 ret = -EIO; 1408 goto err_power_off; 1409 } 1410 1411 /* 1412 * The reason we have to wait for the target here is that the 1413 * driver layer has to init BMI in order to set the host block 1414 * size. 1415 */ 1416 if (ath6kl_htc_wait_target(ar->htc_target)) { 1417 ret = -EIO; 1418 goto err_power_off; 1419 } 1420 1421 if (ath6kl_init_service_ep(ar)) { 1422 ret = -EIO; 1423 goto err_cleanup_scatter; 1424 } 1425 1426 /* setup credit distribution */ 1427 ath6kl_credit_setup(ar->htc_target, &ar->credit_state_info); 1428 1429 /* start HTC */ 1430 ret = ath6kl_htc_start(ar->htc_target); 1431 if (ret) { 1432 /* FIXME: call this */ 1433 ath6kl_cookie_cleanup(ar); 1434 goto err_cleanup_scatter; 1435 } 1436 1437 /* Wait for Wmi event to be ready */ 1438 timeleft = wait_event_interruptible_timeout(ar->event_wq, 1439 test_bit(WMI_READY, 1440 &ar->flag), 1441 WMI_TIMEOUT); 1442 1443 ath6kl_dbg(ATH6KL_DBG_BOOT, "firmware booted\n"); 1444 1445 if (ar->version.abi_ver != ATH6KL_ABI_VERSION) { 1446 ath6kl_err("abi version mismatch: host(0x%x), target(0x%x)\n", 1447 ATH6KL_ABI_VERSION, ar->version.abi_ver); 1448 ret = -EIO; 1449 goto err_htc_stop; 1450 } 1451 1452 if (!timeleft || signal_pending(current)) { 1453 ath6kl_err("wmi is not ready or wait was interrupted\n"); 1454 ret = -EIO; 1455 goto err_htc_stop; 1456 } 1457 1458 ath6kl_dbg(ATH6KL_DBG_TRC, "%s: wmi is ready\n", __func__); 1459 1460 /* communicate the wmi protocol verision to the target */ 1461 /* FIXME: return error */ 1462 if ((ath6kl_set_host_app_area(ar)) != 0) 1463 ath6kl_err("unable to set the host app area\n"); 1464 1465 for (i = 0; i < MAX_NUM_VIF; i++) { 1466 ret = ath6kl_target_config_wlan_params(ar, i); 1467 if (ret) 1468 goto err_htc_stop; 1469 } 1470 1471 ar->state = ATH6KL_STATE_ON; 1472 1473 return 0; 1474 1475 err_htc_stop: 1476 ath6kl_htc_stop(ar->htc_target); 1477 err_cleanup_scatter: 1478 ath6kl_hif_cleanup_scatter(ar); 1479 err_power_off: 1480 ath6kl_hif_power_off(ar); 1481 1482 return ret; 1483 } 1484 1485 int ath6kl_init_hw_stop(struct ath6kl *ar) 1486 { 1487 int ret; 1488 1489 ath6kl_dbg(ATH6KL_DBG_BOOT, "hw stop\n"); 1490 1491 ath6kl_htc_stop(ar->htc_target); 1492 1493 ath6kl_hif_stop(ar); 1494 1495 ath6kl_bmi_reset(ar); 1496 1497 ret = ath6kl_hif_power_off(ar); 1498 if (ret) 1499 ath6kl_warn("failed to power off hif: %d\n", ret); 1500 1501 ar->state = ATH6KL_STATE_OFF; 1502 1503 return 0; 1504 } 1505 1506 int ath6kl_core_init(struct ath6kl *ar) 1507 { 1508 struct ath6kl_bmi_target_info targ_info; 1509 struct net_device *ndev; 1510 int ret = 0, i; 1511 1512 ar->ath6kl_wq = create_singlethread_workqueue("ath6kl"); 1513 if (!ar->ath6kl_wq) 1514 return -ENOMEM; 1515 1516 ret = ath6kl_bmi_init(ar); 1517 if (ret) 1518 goto err_wq; 1519 1520 /* 1521 * Turn on power to get hardware (target) version and leave power 1522 * on delibrately as we will boot the hardware anyway within few 1523 * seconds. 1524 */ 1525 ret = ath6kl_hif_power_on(ar); 1526 if (ret) 1527 goto err_bmi_cleanup; 1528 1529 ret = ath6kl_bmi_get_target_info(ar, &targ_info); 1530 if (ret) 1531 goto err_power_off; 1532 1533 ar->version.target_ver = le32_to_cpu(targ_info.version); 1534 ar->target_type = le32_to_cpu(targ_info.type); 1535 ar->wiphy->hw_version = le32_to_cpu(targ_info.version); 1536 1537 ret = ath6kl_init_hw_params(ar); 1538 if (ret) 1539 goto err_power_off; 1540 1541 ar->htc_target = ath6kl_htc_create(ar); 1542 1543 if (!ar->htc_target) { 1544 ret = -ENOMEM; 1545 goto err_power_off; 1546 } 1547 1548 ret = ath6kl_fetch_firmwares(ar); 1549 if (ret) 1550 goto err_htc_cleanup; 1551 1552 /* FIXME: we should free all firmwares in the error cases below */ 1553 1554 /* Indicate that WMI is enabled (although not ready yet) */ 1555 set_bit(WMI_ENABLED, &ar->flag); 1556 ar->wmi = ath6kl_wmi_init(ar); 1557 if (!ar->wmi) { 1558 ath6kl_err("failed to initialize wmi\n"); 1559 ret = -EIO; 1560 goto err_htc_cleanup; 1561 } 1562 1563 ath6kl_dbg(ATH6KL_DBG_TRC, "%s: got wmi @ 0x%p.\n", __func__, ar->wmi); 1564 1565 ret = ath6kl_register_ieee80211_hw(ar); 1566 if (ret) 1567 goto err_node_cleanup; 1568 1569 ret = ath6kl_debug_init(ar); 1570 if (ret) { 1571 wiphy_unregister(ar->wiphy); 1572 goto err_node_cleanup; 1573 } 1574 1575 for (i = 0; i < MAX_NUM_VIF; i++) 1576 ar->avail_idx_map |= BIT(i); 1577 1578 rtnl_lock(); 1579 1580 /* Add an initial station interface */ 1581 ndev = ath6kl_interface_add(ar, "wlan%d", NL80211_IFTYPE_STATION, 0, 1582 INFRA_NETWORK); 1583 1584 rtnl_unlock(); 1585 1586 if (!ndev) { 1587 ath6kl_err("Failed to instantiate a network device\n"); 1588 ret = -ENOMEM; 1589 wiphy_unregister(ar->wiphy); 1590 goto err_debug_init; 1591 } 1592 1593 1594 ath6kl_dbg(ATH6KL_DBG_TRC, "%s: name=%s dev=0x%p, ar=0x%p\n", 1595 __func__, ndev->name, ndev, ar); 1596 1597 /* setup access class priority mappings */ 1598 ar->ac_stream_pri_map[WMM_AC_BK] = 0; /* lowest */ 1599 ar->ac_stream_pri_map[WMM_AC_BE] = 1; 1600 ar->ac_stream_pri_map[WMM_AC_VI] = 2; 1601 ar->ac_stream_pri_map[WMM_AC_VO] = 3; /* highest */ 1602 1603 /* give our connected endpoints some buffers */ 1604 ath6kl_rx_refill(ar->htc_target, ar->ctrl_ep); 1605 ath6kl_rx_refill(ar->htc_target, ar->ac2ep_map[WMM_AC_BE]); 1606 1607 /* allocate some buffers that handle larger AMSDU frames */ 1608 ath6kl_refill_amsdu_rxbufs(ar, ATH6KL_MAX_AMSDU_RX_BUFFERS); 1609 1610 ath6kl_cookie_init(ar); 1611 1612 ar->conf_flags = ATH6KL_CONF_IGNORE_ERP_BARKER | 1613 ATH6KL_CONF_ENABLE_11N | ATH6KL_CONF_ENABLE_TX_BURST; 1614 1615 if (suspend_cutpower) 1616 ar->conf_flags |= ATH6KL_CONF_SUSPEND_CUTPOWER; 1617 1618 ar->wiphy->flags |= WIPHY_FLAG_SUPPORTS_FW_ROAM | 1619 WIPHY_FLAG_HAVE_AP_SME; 1620 1621 set_bit(FIRST_BOOT, &ar->flag); 1622 1623 ret = ath6kl_init_hw_start(ar); 1624 if (ret) { 1625 ath6kl_err("Failed to start hardware: %d\n", ret); 1626 goto err_rxbuf_cleanup; 1627 } 1628 1629 /* 1630 * Set mac address which is received in ready event 1631 * FIXME: Move to ath6kl_interface_add() 1632 */ 1633 memcpy(ndev->dev_addr, ar->mac_addr, ETH_ALEN); 1634 1635 return ret; 1636 1637 err_rxbuf_cleanup: 1638 ath6kl_htc_flush_rx_buf(ar->htc_target); 1639 ath6kl_cleanup_amsdu_rxbufs(ar); 1640 rtnl_lock(); 1641 ath6kl_deinit_if_data(netdev_priv(ndev)); 1642 rtnl_unlock(); 1643 wiphy_unregister(ar->wiphy); 1644 err_debug_init: 1645 ath6kl_debug_cleanup(ar); 1646 err_node_cleanup: 1647 ath6kl_wmi_shutdown(ar->wmi); 1648 clear_bit(WMI_ENABLED, &ar->flag); 1649 ar->wmi = NULL; 1650 err_htc_cleanup: 1651 ath6kl_htc_cleanup(ar->htc_target); 1652 err_power_off: 1653 ath6kl_hif_power_off(ar); 1654 err_bmi_cleanup: 1655 ath6kl_bmi_cleanup(ar); 1656 err_wq: 1657 destroy_workqueue(ar->ath6kl_wq); 1658 1659 return ret; 1660 } 1661 1662 void ath6kl_cleanup_vif(struct ath6kl_vif *vif, bool wmi_ready) 1663 { 1664 static u8 bcast_mac[] = {0xff, 0xff, 0xff, 0xff, 0xff, 0xff}; 1665 bool discon_issued; 1666 1667 netif_stop_queue(vif->ndev); 1668 1669 clear_bit(WLAN_ENABLED, &vif->flags); 1670 1671 if (wmi_ready) { 1672 discon_issued = test_bit(CONNECTED, &vif->flags) || 1673 test_bit(CONNECT_PEND, &vif->flags); 1674 ath6kl_disconnect(vif); 1675 del_timer(&vif->disconnect_timer); 1676 1677 if (discon_issued) 1678 ath6kl_disconnect_event(vif, DISCONNECT_CMD, 1679 (vif->nw_type & AP_NETWORK) ? 1680 bcast_mac : vif->bssid, 1681 0, NULL, 0); 1682 } 1683 1684 if (vif->scan_req) { 1685 cfg80211_scan_done(vif->scan_req, true); 1686 vif->scan_req = NULL; 1687 } 1688 } 1689 1690 void ath6kl_stop_txrx(struct ath6kl *ar) 1691 { 1692 struct ath6kl_vif *vif, *tmp_vif; 1693 1694 set_bit(DESTROY_IN_PROGRESS, &ar->flag); 1695 1696 if (down_interruptible(&ar->sem)) { 1697 ath6kl_err("down_interruptible failed\n"); 1698 return; 1699 } 1700 1701 spin_lock_bh(&ar->list_lock); 1702 list_for_each_entry_safe(vif, tmp_vif, &ar->vif_list, list) { 1703 list_del(&vif->list); 1704 spin_unlock_bh(&ar->list_lock); 1705 ath6kl_cleanup_vif(vif, test_bit(WMI_READY, &ar->flag)); 1706 rtnl_lock(); 1707 ath6kl_deinit_if_data(vif); 1708 rtnl_unlock(); 1709 spin_lock_bh(&ar->list_lock); 1710 } 1711 spin_unlock_bh(&ar->list_lock); 1712 1713 clear_bit(WMI_READY, &ar->flag); 1714 1715 /* 1716 * After wmi_shudown all WMI events will be dropped. We 1717 * need to cleanup the buffers allocated in AP mode and 1718 * give disconnect notification to stack, which usually 1719 * happens in the disconnect_event. Simulate the disconnect 1720 * event by calling the function directly. Sometimes 1721 * disconnect_event will be received when the debug logs 1722 * are collected. 1723 */ 1724 ath6kl_wmi_shutdown(ar->wmi); 1725 1726 clear_bit(WMI_ENABLED, &ar->flag); 1727 if (ar->htc_target) { 1728 ath6kl_dbg(ATH6KL_DBG_TRC, "%s: shut down htc\n", __func__); 1729 ath6kl_htc_stop(ar->htc_target); 1730 } 1731 1732 /* 1733 * Try to reset the device if we can. The driver may have been 1734 * configure NOT to reset the target during a debug session. 1735 */ 1736 ath6kl_dbg(ATH6KL_DBG_TRC, 1737 "attempting to reset target on instance destroy\n"); 1738 ath6kl_reset_device(ar, ar->target_type, true, true); 1739 1740 clear_bit(WLAN_ENABLED, &ar->flag); 1741 } 1742