1 // SPDX-License-Identifier: GPL-2.0 2 /****************************************************************************** 3 * rtl8712_recv.c 4 * 5 * Copyright(c) 2007 - 2010 Realtek Corporation. All rights reserved. 6 * Linux device driver for RTL8192SU 7 * 8 * Modifications for inclusion into the Linux staging tree are 9 * Copyright(c) 2010 Larry Finger. All rights reserved. 10 * 11 * Contact information: 12 * WLAN FAE <wlanfae@realtek.com> 13 * Larry Finger <Larry.Finger@lwfinger.net> 14 * 15 ******************************************************************************/ 16 17 #define _RTL8712_RECV_C_ 18 19 #include <linux/if_ether.h> 20 #include <linux/ip.h> 21 #include <net/cfg80211.h> 22 23 #include "osdep_service.h" 24 #include "drv_types.h" 25 #include "recv_osdep.h" 26 #include "mlme_osdep.h" 27 #include "ethernet.h" 28 #include "usb_ops.h" 29 #include "wifi.h" 30 31 static void recv_tasklet(unsigned long priv); 32 33 void r8712_init_recv_priv(struct recv_priv *precvpriv, 34 struct _adapter *padapter) 35 { 36 int i; 37 struct recv_buf *precvbuf; 38 addr_t tmpaddr = 0; 39 int alignment = 0; 40 struct sk_buff *pskb = NULL; 41 42 /*init recv_buf*/ 43 _init_queue(&precvpriv->free_recv_buf_queue); 44 precvpriv->pallocated_recv_buf = 45 kzalloc(NR_RECVBUFF * sizeof(struct recv_buf) + 4, GFP_ATOMIC); 46 if (!precvpriv->pallocated_recv_buf) 47 return; 48 precvpriv->precv_buf = precvpriv->pallocated_recv_buf + 4 - 49 ((addr_t)(precvpriv->pallocated_recv_buf) & 3); 50 precvbuf = (struct recv_buf *)precvpriv->precv_buf; 51 for (i = 0; i < NR_RECVBUFF; i++) { 52 INIT_LIST_HEAD(&precvbuf->list); 53 spin_lock_init(&precvbuf->recvbuf_lock); 54 if (r8712_os_recvbuf_resource_alloc(padapter, precvbuf)) 55 break; 56 precvbuf->ref_cnt = 0; 57 precvbuf->adapter = padapter; 58 list_add_tail(&precvbuf->list, 59 &(precvpriv->free_recv_buf_queue.queue)); 60 precvbuf++; 61 } 62 precvpriv->free_recv_buf_queue_cnt = NR_RECVBUFF; 63 tasklet_init(&precvpriv->recv_tasklet, recv_tasklet, 64 (unsigned long)padapter); 65 skb_queue_head_init(&precvpriv->rx_skb_queue); 66 67 skb_queue_head_init(&precvpriv->free_recv_skb_queue); 68 for (i = 0; i < NR_PREALLOC_RECV_SKB; i++) { 69 pskb = netdev_alloc_skb(padapter->pnetdev, MAX_RECVBUF_SZ + 70 RECVBUFF_ALIGN_SZ); 71 if (pskb) { 72 tmpaddr = (addr_t)pskb->data; 73 alignment = tmpaddr & (RECVBUFF_ALIGN_SZ - 1); 74 skb_reserve(pskb, (RECVBUFF_ALIGN_SZ - alignment)); 75 skb_queue_tail(&precvpriv->free_recv_skb_queue, pskb); 76 } 77 pskb = NULL; 78 } 79 } 80 81 void r8712_free_recv_priv(struct recv_priv *precvpriv) 82 { 83 int i; 84 struct recv_buf *precvbuf; 85 struct _adapter *padapter = precvpriv->adapter; 86 87 precvbuf = (struct recv_buf *)precvpriv->precv_buf; 88 for (i = 0; i < NR_RECVBUFF; i++) { 89 r8712_os_recvbuf_resource_free(padapter, precvbuf); 90 precvbuf++; 91 } 92 kfree(precvpriv->pallocated_recv_buf); 93 skb_queue_purge(&precvpriv->rx_skb_queue); 94 if (skb_queue_len(&precvpriv->rx_skb_queue)) 95 netdev_warn(padapter->pnetdev, "r8712u: rx_skb_queue not empty\n"); 96 skb_queue_purge(&precvpriv->free_recv_skb_queue); 97 if (skb_queue_len(&precvpriv->free_recv_skb_queue)) 98 netdev_warn(padapter->pnetdev, "r8712u: free_recv_skb_queue not empty %d\n", 99 skb_queue_len(&precvpriv->free_recv_skb_queue)); 100 } 101 102 void r8712_init_recvbuf(struct _adapter *padapter, struct recv_buf *precvbuf) 103 { 104 precvbuf->transfer_len = 0; 105 precvbuf->len = 0; 106 precvbuf->ref_cnt = 0; 107 if (precvbuf->pbuf) { 108 precvbuf->pdata = precvbuf->pbuf; 109 precvbuf->phead = precvbuf->pbuf; 110 precvbuf->ptail = precvbuf->pbuf; 111 precvbuf->pend = precvbuf->pdata + MAX_RECVBUF_SZ; 112 } 113 } 114 115 void r8712_free_recvframe(union recv_frame *precvframe, 116 struct __queue *pfree_recv_queue) 117 { 118 unsigned long irqL; 119 struct _adapter *padapter = precvframe->u.hdr.adapter; 120 struct recv_priv *precvpriv = &padapter->recvpriv; 121 122 if (precvframe->u.hdr.pkt) { 123 dev_kfree_skb_any(precvframe->u.hdr.pkt);/*free skb by driver*/ 124 precvframe->u.hdr.pkt = NULL; 125 } 126 spin_lock_irqsave(&pfree_recv_queue->lock, irqL); 127 list_del_init(&(precvframe->u.hdr.list)); 128 list_add_tail(&(precvframe->u.hdr.list), &pfree_recv_queue->queue); 129 if (padapter) { 130 if (pfree_recv_queue == &precvpriv->free_recv_queue) 131 precvpriv->free_recvframe_cnt++; 132 } 133 spin_unlock_irqrestore(&pfree_recv_queue->lock, irqL); 134 } 135 136 static void update_recvframe_attrib_from_recvstat(struct rx_pkt_attrib *pattrib, 137 struct recv_stat *prxstat) 138 { 139 u16 drvinfo_sz; 140 141 drvinfo_sz = (le32_to_cpu(prxstat->rxdw0) & 0x000f0000) >> 16; 142 drvinfo_sz <<= 3; 143 /*TODO: 144 * Offset 0 145 */ 146 pattrib->bdecrypted = (le32_to_cpu(prxstat->rxdw0) & BIT(27)) == 0; 147 pattrib->crc_err = (le32_to_cpu(prxstat->rxdw0) & BIT(14)) != 0; 148 /*Offset 4*/ 149 /*Offset 8*/ 150 /*Offset 12*/ 151 if (le32_to_cpu(prxstat->rxdw3) & BIT(13)) { 152 pattrib->tcpchk_valid = 1; /* valid */ 153 if (le32_to_cpu(prxstat->rxdw3) & BIT(11)) 154 pattrib->tcp_chkrpt = 1; /* correct */ 155 else 156 pattrib->tcp_chkrpt = 0; /* incorrect */ 157 if (le32_to_cpu(prxstat->rxdw3) & BIT(12)) 158 pattrib->ip_chkrpt = 1; /* correct */ 159 else 160 pattrib->ip_chkrpt = 0; /* incorrect */ 161 } else { 162 pattrib->tcpchk_valid = 0; /* invalid */ 163 } 164 pattrib->mcs_rate = (u8)((le32_to_cpu(prxstat->rxdw3)) & 0x3f); 165 pattrib->htc = (u8)((le32_to_cpu(prxstat->rxdw3) >> 14) & 0x1); 166 /*Offset 16*/ 167 /*Offset 20*/ 168 /*phy_info*/ 169 } 170 171 /*perform defrag*/ 172 static union recv_frame *recvframe_defrag(struct _adapter *adapter, 173 struct __queue *defrag_q) 174 { 175 struct list_head *plist, *phead; 176 u8 wlanhdr_offset; 177 u8 curfragnum; 178 struct recv_frame_hdr *pfhdr, *pnfhdr; 179 union recv_frame *prframe, *pnextrframe; 180 struct __queue *pfree_recv_queue; 181 182 pfree_recv_queue = &adapter->recvpriv.free_recv_queue; 183 phead = &defrag_q->queue; 184 plist = phead->next; 185 prframe = container_of(plist, union recv_frame, u.list); 186 list_del_init(&prframe->u.list); 187 pfhdr = &prframe->u.hdr; 188 curfragnum = 0; 189 if (curfragnum != pfhdr->attrib.frag_num) { 190 /*the first fragment number must be 0 191 *free the whole queue 192 */ 193 r8712_free_recvframe(prframe, pfree_recv_queue); 194 r8712_free_recvframe_queue(defrag_q, pfree_recv_queue); 195 return NULL; 196 } 197 curfragnum++; 198 plist = &defrag_q->queue; 199 plist = plist->next; 200 while (!end_of_queue_search(phead, plist)) { 201 pnextrframe = container_of(plist, union recv_frame, u.list); 202 pnfhdr = &pnextrframe->u.hdr; 203 /*check the fragment sequence (2nd ~n fragment frame) */ 204 if (curfragnum != pnfhdr->attrib.frag_num) { 205 /* the fragment number must increase (after decache) 206 * release the defrag_q & prframe 207 */ 208 r8712_free_recvframe(prframe, pfree_recv_queue); 209 r8712_free_recvframe_queue(defrag_q, pfree_recv_queue); 210 return NULL; 211 } 212 curfragnum++; 213 /* copy the 2nd~n fragment frame's payload to the first fragment 214 * get the 2nd~last fragment frame's payload 215 */ 216 wlanhdr_offset = pnfhdr->attrib.hdrlen + pnfhdr->attrib.iv_len; 217 recvframe_pull(pnextrframe, wlanhdr_offset); 218 /* append to first fragment frame's tail (if privacy frame, 219 * pull the ICV) 220 */ 221 recvframe_pull_tail(prframe, pfhdr->attrib.icv_len); 222 memcpy(pfhdr->rx_tail, pnfhdr->rx_data, pnfhdr->len); 223 recvframe_put(prframe, pnfhdr->len); 224 pfhdr->attrib.icv_len = pnfhdr->attrib.icv_len; 225 plist = plist->next; 226 } 227 /* free the defrag_q queue and return the prframe */ 228 r8712_free_recvframe_queue(defrag_q, pfree_recv_queue); 229 return prframe; 230 } 231 232 /* check if need to defrag, if needed queue the frame to defrag_q */ 233 union recv_frame *r8712_recvframe_chk_defrag(struct _adapter *padapter, 234 union recv_frame *precv_frame) 235 { 236 u8 ismfrag; 237 u8 fragnum; 238 u8 *psta_addr; 239 struct recv_frame_hdr *pfhdr; 240 struct sta_info *psta; 241 struct sta_priv *pstapriv; 242 struct list_head *phead; 243 union recv_frame *prtnframe = NULL; 244 struct __queue *pfree_recv_queue, *pdefrag_q; 245 246 pstapriv = &padapter->stapriv; 247 pfhdr = &precv_frame->u.hdr; 248 pfree_recv_queue = &padapter->recvpriv.free_recv_queue; 249 /* need to define struct of wlan header frame ctrl */ 250 ismfrag = pfhdr->attrib.mfrag; 251 fragnum = pfhdr->attrib.frag_num; 252 psta_addr = pfhdr->attrib.ta; 253 psta = r8712_get_stainfo(pstapriv, psta_addr); 254 if (!psta) 255 pdefrag_q = NULL; 256 else 257 pdefrag_q = &psta->sta_recvpriv.defrag_q; 258 259 if ((ismfrag == 0) && (fragnum == 0)) 260 prtnframe = precv_frame;/*isn't a fragment frame*/ 261 if (ismfrag == 1) { 262 /* 0~(n-1) fragment frame 263 * enqueue to defraf_g 264 */ 265 if (pdefrag_q) { 266 if (fragnum == 0) { 267 /*the first fragment*/ 268 if (!list_empty(&pdefrag_q->queue)) { 269 /*free current defrag_q */ 270 r8712_free_recvframe_queue(pdefrag_q, 271 pfree_recv_queue); 272 } 273 } 274 /* Then enqueue the 0~(n-1) fragment to the defrag_q */ 275 phead = &pdefrag_q->queue; 276 list_add_tail(&pfhdr->list, phead); 277 prtnframe = NULL; 278 } else { 279 /* can't find this ta's defrag_queue, so free this 280 * recv_frame 281 */ 282 r8712_free_recvframe(precv_frame, pfree_recv_queue); 283 prtnframe = NULL; 284 } 285 } 286 if ((ismfrag == 0) && (fragnum != 0)) { 287 /* the last fragment frame 288 * enqueue the last fragment 289 */ 290 if (pdefrag_q) { 291 phead = &pdefrag_q->queue; 292 list_add_tail(&pfhdr->list, phead); 293 /*call recvframe_defrag to defrag*/ 294 precv_frame = recvframe_defrag(padapter, pdefrag_q); 295 prtnframe = precv_frame; 296 } else { 297 /* can't find this ta's defrag_queue, so free this 298 * recv_frame 299 */ 300 r8712_free_recvframe(precv_frame, pfree_recv_queue); 301 prtnframe = NULL; 302 } 303 } 304 if (prtnframe && (prtnframe->u.hdr.attrib.privacy)) { 305 /* after defrag we must check tkip mic code */ 306 if (r8712_recvframe_chkmic(padapter, prtnframe) == _FAIL) { 307 r8712_free_recvframe(prtnframe, pfree_recv_queue); 308 prtnframe = NULL; 309 } 310 } 311 return prtnframe; 312 } 313 314 static void amsdu_to_msdu(struct _adapter *padapter, union recv_frame *prframe) 315 { 316 int a_len, padding_len; 317 u16 eth_type, nSubframe_Length; 318 u8 nr_subframes, i; 319 unsigned char *pdata; 320 struct rx_pkt_attrib *pattrib; 321 _pkt *sub_skb, *subframes[MAX_SUBFRAME_COUNT]; 322 struct recv_priv *precvpriv = &padapter->recvpriv; 323 struct __queue *pfree_recv_queue = &(precvpriv->free_recv_queue); 324 325 nr_subframes = 0; 326 pattrib = &prframe->u.hdr.attrib; 327 recvframe_pull(prframe, prframe->u.hdr.attrib.hdrlen); 328 if (prframe->u.hdr.attrib.iv_len > 0) 329 recvframe_pull(prframe, prframe->u.hdr.attrib.iv_len); 330 a_len = prframe->u.hdr.len; 331 pdata = prframe->u.hdr.rx_data; 332 while (a_len > ETH_HLEN) { 333 /* Offset 12 denote 2 mac address */ 334 nSubframe_Length = *((u16 *)(pdata + 12)); 335 /*==m==>change the length order*/ 336 nSubframe_Length = (nSubframe_Length >> 8) + 337 (nSubframe_Length << 8); 338 if (a_len < (ETHERNET_HEADER_SIZE + nSubframe_Length)) { 339 netdev_warn(padapter->pnetdev, "r8712u: nRemain_Length is %d and nSubframe_Length is: %d\n", 340 a_len, nSubframe_Length); 341 goto exit; 342 } 343 /* move the data point to data content */ 344 pdata += ETH_HLEN; 345 a_len -= ETH_HLEN; 346 /* Allocate new skb for releasing to upper layer */ 347 sub_skb = dev_alloc_skb(nSubframe_Length + 12); 348 if (!sub_skb) 349 break; 350 skb_reserve(sub_skb, 12); 351 skb_put_data(sub_skb, pdata, nSubframe_Length); 352 subframes[nr_subframes++] = sub_skb; 353 if (nr_subframes >= MAX_SUBFRAME_COUNT) { 354 netdev_warn(padapter->pnetdev, "r8712u: ParseSubframe(): Too many Subframes! Packets dropped!\n"); 355 break; 356 } 357 pdata += nSubframe_Length; 358 a_len -= nSubframe_Length; 359 if (a_len != 0) { 360 padding_len = 4 - ((nSubframe_Length + ETH_HLEN) & 3); 361 if (padding_len == 4) 362 padding_len = 0; 363 if (a_len < padding_len) 364 goto exit; 365 pdata += padding_len; 366 a_len -= padding_len; 367 } 368 } 369 for (i = 0; i < nr_subframes; i++) { 370 sub_skb = subframes[i]; 371 /* convert hdr + possible LLC headers into Ethernet header */ 372 eth_type = (sub_skb->data[6] << 8) | sub_skb->data[7]; 373 if (sub_skb->len >= 8 && 374 ((!memcmp(sub_skb->data, rfc1042_header, SNAP_SIZE) && 375 eth_type != ETH_P_AARP && eth_type != ETH_P_IPX) || 376 !memcmp(sub_skb->data, bridge_tunnel_header, SNAP_SIZE))) { 377 /* remove RFC1042 or Bridge-Tunnel encapsulation and 378 * replace EtherType 379 */ 380 skb_pull(sub_skb, SNAP_SIZE); 381 memcpy(skb_push(sub_skb, ETH_ALEN), pattrib->src, 382 ETH_ALEN); 383 memcpy(skb_push(sub_skb, ETH_ALEN), pattrib->dst, 384 ETH_ALEN); 385 } else { 386 __be16 len; 387 /* Leave Ethernet header part of hdr and full payload */ 388 len = htons(sub_skb->len); 389 memcpy(skb_push(sub_skb, 2), &len, 2); 390 memcpy(skb_push(sub_skb, ETH_ALEN), pattrib->src, 391 ETH_ALEN); 392 memcpy(skb_push(sub_skb, ETH_ALEN), pattrib->dst, 393 ETH_ALEN); 394 } 395 /* Indicate the packets to upper layer */ 396 if (sub_skb) { 397 sub_skb->protocol = 398 eth_type_trans(sub_skb, padapter->pnetdev); 399 sub_skb->dev = padapter->pnetdev; 400 if ((pattrib->tcpchk_valid == 1) && 401 (pattrib->tcp_chkrpt == 1)) { 402 sub_skb->ip_summed = CHECKSUM_UNNECESSARY; 403 } else { 404 sub_skb->ip_summed = CHECKSUM_NONE; 405 } 406 netif_rx(sub_skb); 407 } 408 } 409 exit: 410 prframe->u.hdr.len = 0; 411 r8712_free_recvframe(prframe, pfree_recv_queue); 412 } 413 414 void r8712_rxcmd_event_hdl(struct _adapter *padapter, void *prxcmdbuf) 415 { 416 __le32 voffset; 417 u8 *poffset; 418 u16 cmd_len, drvinfo_sz; 419 struct recv_stat *prxstat; 420 421 poffset = prxcmdbuf; 422 voffset = *(__le32 *)poffset; 423 prxstat = prxcmdbuf; 424 drvinfo_sz = (le32_to_cpu(prxstat->rxdw0) & 0x000f0000) >> 16; 425 drvinfo_sz <<= 3; 426 poffset += RXDESC_SIZE + drvinfo_sz; 427 do { 428 voffset = *(__le32 *)poffset; 429 cmd_len = (u16)(le32_to_cpu(voffset) & 0xffff); 430 r8712_event_handle(padapter, (__le32 *)poffset); 431 poffset += (cmd_len + 8);/*8 bytes alignment*/ 432 } while (le32_to_cpu(voffset) & BIT(31)); 433 } 434 435 static int check_indicate_seq(struct recv_reorder_ctrl *preorder_ctrl, 436 u16 seq_num) 437 { 438 u8 wsize = preorder_ctrl->wsize_b; 439 u16 wend = (preorder_ctrl->indicate_seq + wsize - 1) % 4096; 440 441 /* Rx Reorder initialize condition.*/ 442 if (preorder_ctrl->indicate_seq == 0xffff) 443 preorder_ctrl->indicate_seq = seq_num; 444 /* Drop out the packet which SeqNum is smaller than WinStart */ 445 if (SN_LESS(seq_num, preorder_ctrl->indicate_seq)) 446 return false; 447 /* 448 * Sliding window manipulation. Conditions includes: 449 * 1. Incoming SeqNum is equal to WinStart =>Window shift 1 450 * 2. Incoming SeqNum is larger than the WinEnd => Window shift N 451 */ 452 if (SN_EQUAL(seq_num, preorder_ctrl->indicate_seq)) 453 preorder_ctrl->indicate_seq = (preorder_ctrl->indicate_seq + 454 1) % 4096; 455 else if (SN_LESS(wend, seq_num)) { 456 if (seq_num >= (wsize - 1)) 457 preorder_ctrl->indicate_seq = seq_num + 1 - wsize; 458 else 459 preorder_ctrl->indicate_seq = 4095 - (wsize - 460 (seq_num + 1)) + 1; 461 } 462 return true; 463 } 464 465 static int enqueue_reorder_recvframe(struct recv_reorder_ctrl *preorder_ctrl, 466 union recv_frame *prframe) 467 { 468 struct list_head *phead, *plist; 469 union recv_frame *pnextrframe; 470 struct rx_pkt_attrib *pnextattrib; 471 struct __queue *ppending_recvframe_queue = 472 &preorder_ctrl->pending_recvframe_queue; 473 struct rx_pkt_attrib *pattrib = &prframe->u.hdr.attrib; 474 475 phead = &ppending_recvframe_queue->queue; 476 plist = phead->next; 477 while (!end_of_queue_search(phead, plist)) { 478 pnextrframe = container_of(plist, union recv_frame, u.list); 479 pnextattrib = &pnextrframe->u.hdr.attrib; 480 if (SN_LESS(pnextattrib->seq_num, pattrib->seq_num)) 481 plist = plist->next; 482 else if (SN_EQUAL(pnextattrib->seq_num, pattrib->seq_num)) 483 return false; 484 break; 485 } 486 list_del_init(&(prframe->u.hdr.list)); 487 list_add_tail(&(prframe->u.hdr.list), plist); 488 return true; 489 } 490 491 int r8712_recv_indicatepkts_in_order(struct _adapter *padapter, 492 struct recv_reorder_ctrl *preorder_ctrl, 493 int bforced) 494 { 495 struct list_head *phead, *plist; 496 union recv_frame *prframe; 497 struct rx_pkt_attrib *pattrib; 498 int bPktInBuf = false; 499 struct __queue *ppending_recvframe_queue = 500 &preorder_ctrl->pending_recvframe_queue; 501 502 phead = &ppending_recvframe_queue->queue; 503 plist = phead->next; 504 /* Handling some condition for forced indicate case.*/ 505 if (bforced) { 506 if (list_empty(phead)) 507 return true; 508 509 prframe = container_of(plist, union recv_frame, u.list); 510 pattrib = &prframe->u.hdr.attrib; 511 preorder_ctrl->indicate_seq = pattrib->seq_num; 512 } 513 /* Prepare indication list and indication. 514 * Check if there is any packet need indicate. 515 */ 516 while (!list_empty(phead)) { 517 prframe = container_of(plist, union recv_frame, u.list); 518 pattrib = &prframe->u.hdr.attrib; 519 if (!SN_LESS(preorder_ctrl->indicate_seq, pattrib->seq_num)) { 520 plist = plist->next; 521 list_del_init(&(prframe->u.hdr.list)); 522 if (SN_EQUAL(preorder_ctrl->indicate_seq, 523 pattrib->seq_num)) 524 preorder_ctrl->indicate_seq = 525 (preorder_ctrl->indicate_seq + 1) % 4096; 526 /*indicate this recv_frame*/ 527 if (!pattrib->amsdu) { 528 if (!padapter->driver_stopped && 529 !padapter->surprise_removed) { 530 /* indicate this recv_frame */ 531 r8712_recv_indicatepkt(padapter, 532 prframe); 533 } 534 } else if (pattrib->amsdu == 1) { 535 amsdu_to_msdu(padapter, prframe); 536 } 537 /* Update local variables. */ 538 bPktInBuf = false; 539 } else { 540 bPktInBuf = true; 541 break; 542 } 543 } 544 return bPktInBuf; 545 } 546 547 static int recv_indicatepkt_reorder(struct _adapter *padapter, 548 union recv_frame *prframe) 549 { 550 unsigned long irql; 551 struct rx_pkt_attrib *pattrib = &prframe->u.hdr.attrib; 552 struct recv_reorder_ctrl *preorder_ctrl = prframe->u.hdr.preorder_ctrl; 553 struct __queue *ppending_recvframe_queue = 554 &preorder_ctrl->pending_recvframe_queue; 555 556 if (!pattrib->amsdu) { 557 /* s1. */ 558 r8712_wlanhdr_to_ethhdr(prframe); 559 if (pattrib->qos != 1) { 560 if (!padapter->driver_stopped && 561 !padapter->surprise_removed) { 562 r8712_recv_indicatepkt(padapter, prframe); 563 return 0; 564 } else { 565 return -EINVAL; 566 } 567 } 568 } 569 spin_lock_irqsave(&ppending_recvframe_queue->lock, irql); 570 /*s2. check if winstart_b(indicate_seq) needs to be updated*/ 571 if (!check_indicate_seq(preorder_ctrl, pattrib->seq_num)) 572 goto _err_exit; 573 /*s3. Insert all packet into Reorder Queue to maintain its ordering.*/ 574 if (!enqueue_reorder_recvframe(preorder_ctrl, prframe)) 575 goto _err_exit; 576 /*s4. 577 * Indication process. 578 * After Packet dropping and Sliding Window shifting as above, we can 579 * now just indicate the packets with the SeqNum smaller than latest 580 * WinStart and buffer other packets. 581 * 582 * For Rx Reorder condition: 583 * 1. All packets with SeqNum smaller than WinStart => Indicate 584 * 2. All packets with SeqNum larger than or equal to 585 * WinStart => Buffer it. 586 */ 587 if (r8712_recv_indicatepkts_in_order(padapter, preorder_ctrl, false)) { 588 mod_timer(&preorder_ctrl->reordering_ctrl_timer, 589 jiffies + msecs_to_jiffies(REORDER_WAIT_TIME)); 590 spin_unlock_irqrestore(&ppending_recvframe_queue->lock, irql); 591 } else { 592 spin_unlock_irqrestore(&ppending_recvframe_queue->lock, irql); 593 del_timer(&preorder_ctrl->reordering_ctrl_timer); 594 } 595 return 0; 596 _err_exit: 597 spin_unlock_irqrestore(&ppending_recvframe_queue->lock, irql); 598 return -ENOMEM; 599 } 600 601 void r8712_reordering_ctrl_timeout_handler(void *pcontext) 602 { 603 unsigned long irql; 604 struct recv_reorder_ctrl *preorder_ctrl = pcontext; 605 struct _adapter *padapter = preorder_ctrl->padapter; 606 struct __queue *ppending_recvframe_queue = 607 &preorder_ctrl->pending_recvframe_queue; 608 609 if (padapter->driver_stopped || padapter->surprise_removed) 610 return; 611 spin_lock_irqsave(&ppending_recvframe_queue->lock, irql); 612 r8712_recv_indicatepkts_in_order(padapter, preorder_ctrl, true); 613 spin_unlock_irqrestore(&ppending_recvframe_queue->lock, irql); 614 } 615 616 static int r8712_process_recv_indicatepkts(struct _adapter *padapter, 617 union recv_frame *prframe) 618 { 619 int retval = _SUCCESS; 620 struct mlme_priv *pmlmepriv = &padapter->mlmepriv; 621 struct ht_priv *phtpriv = &pmlmepriv->htpriv; 622 623 if (phtpriv->ht_option == 1) { /*B/G/N Mode*/ 624 if (recv_indicatepkt_reorder(padapter, prframe)) { 625 /* including perform A-MPDU Rx Ordering Buffer Control*/ 626 if (!padapter->driver_stopped && 627 !padapter->surprise_removed) 628 return _FAIL; 629 } 630 } else { /*B/G mode*/ 631 retval = r8712_wlanhdr_to_ethhdr(prframe); 632 if (retval) 633 return _FAIL; 634 if (!padapter->driver_stopped && !padapter->surprise_removed) { 635 /* indicate this recv_frame */ 636 r8712_recv_indicatepkt(padapter, prframe); 637 } else { 638 return _FAIL; 639 } 640 } 641 return retval; 642 } 643 644 static u8 query_rx_pwr_percentage(s8 antpower) 645 { 646 if ((antpower <= -100) || (antpower >= 20)) 647 return 0; 648 else if (antpower >= 0) 649 return 100; 650 else 651 return 100 + antpower; 652 } 653 654 static u8 evm_db2percentage(s8 value) 655 { 656 /* 657 * -33dB~0dB to 0%~99% 658 */ 659 s8 ret_val = clamp(-value, 0, 33) * 3; 660 661 if (ret_val == 99) 662 ret_val = 100; 663 664 return ret_val; 665 } 666 667 s32 r8712_signal_scale_mapping(s32 cur_sig) 668 { 669 s32 ret_sig; 670 671 if (cur_sig >= 51 && cur_sig <= 100) 672 ret_sig = 100; 673 else if (cur_sig >= 41 && cur_sig <= 50) 674 ret_sig = 80 + ((cur_sig - 40) * 2); 675 else if (cur_sig >= 31 && cur_sig <= 40) 676 ret_sig = 66 + (cur_sig - 30); 677 else if (cur_sig >= 21 && cur_sig <= 30) 678 ret_sig = 54 + (cur_sig - 20); 679 else if (cur_sig >= 10 && cur_sig <= 20) 680 ret_sig = 42 + (((cur_sig - 10) * 2) / 3); 681 else if (cur_sig >= 5 && cur_sig <= 9) 682 ret_sig = 22 + (((cur_sig - 5) * 3) / 2); 683 else if (cur_sig >= 1 && cur_sig <= 4) 684 ret_sig = 6 + (((cur_sig - 1) * 3) / 2); 685 else 686 ret_sig = cur_sig; 687 return ret_sig; 688 } 689 690 static s32 translate2dbm(struct _adapter *padapter, u8 signal_strength_idx) 691 { 692 s32 signal_power; /* in dBm.*/ 693 /* Translate to dBm (x=0.5y-95).*/ 694 signal_power = (s32)((signal_strength_idx + 1) >> 1); 695 signal_power -= 95; 696 return signal_power; 697 } 698 699 static void query_rx_phy_status(struct _adapter *padapter, 700 union recv_frame *prframe) 701 { 702 u8 i, max_spatial_stream, evm; 703 struct recv_stat *prxstat = (struct recv_stat *)prframe->u.hdr.rx_head; 704 struct phy_stat *pphy_stat = (struct phy_stat *)(prxstat + 1); 705 u8 *pphy_head = (u8 *)(prxstat + 1); 706 s8 rx_pwr[4], rx_pwr_all; 707 u8 pwdb_all; 708 u32 rssi, total_rssi = 0; 709 u8 bcck_rate = 0, rf_rx_num = 0, cck_highpwr = 0; 710 struct phy_cck_rx_status *pcck_buf; 711 u8 sq; 712 713 /* Record it for next packet processing*/ 714 bcck_rate = (prframe->u.hdr.attrib.mcs_rate <= 3 ? 1 : 0); 715 if (bcck_rate) { 716 u8 report; 717 718 /* CCK Driver info Structure is not the same as OFDM packet.*/ 719 pcck_buf = (struct phy_cck_rx_status *)pphy_stat; 720 /* (1)Hardware does not provide RSSI for CCK 721 * (2)PWDB, Average PWDB calculated by hardware 722 * (for rate adaptive) 723 */ 724 if (!cck_highpwr) { 725 report = pcck_buf->cck_agc_rpt & 0xc0; 726 report >>= 6; 727 switch (report) { 728 /* Modify the RF RNA gain value to -40, -20, 729 * -2, 14 by Jenyu's suggestion 730 * Note: different RF with the different 731 * RNA gain. 732 */ 733 case 0x3: 734 rx_pwr_all = -40 - (pcck_buf->cck_agc_rpt & 735 0x3e); 736 break; 737 case 0x2: 738 rx_pwr_all = -20 - (pcck_buf->cck_agc_rpt & 739 0x3e); 740 break; 741 case 0x1: 742 rx_pwr_all = -2 - (pcck_buf->cck_agc_rpt & 743 0x3e); 744 break; 745 case 0x0: 746 rx_pwr_all = 14 - (pcck_buf->cck_agc_rpt & 747 0x3e); 748 break; 749 } 750 } else { 751 report = ((u8)(le32_to_cpu(pphy_stat->phydw1) >> 8)) & 752 0x60; 753 report >>= 5; 754 switch (report) { 755 case 0x3: 756 rx_pwr_all = -40 - ((pcck_buf->cck_agc_rpt & 757 0x1f) << 1); 758 break; 759 case 0x2: 760 rx_pwr_all = -20 - ((pcck_buf->cck_agc_rpt & 761 0x1f) << 1); 762 break; 763 case 0x1: 764 rx_pwr_all = -2 - ((pcck_buf->cck_agc_rpt & 765 0x1f) << 1); 766 break; 767 case 0x0: 768 rx_pwr_all = 14 - ((pcck_buf->cck_agc_rpt & 769 0x1f) << 1); 770 break; 771 } 772 } 773 pwdb_all = query_rx_pwr_percentage(rx_pwr_all); 774 /* CCK gain is smaller than OFDM/MCS gain,*/ 775 /* so we add gain diff by experiences, the val is 6 */ 776 pwdb_all += 6; 777 if (pwdb_all > 100) 778 pwdb_all = 100; 779 /* modify the offset to make the same gain index with OFDM.*/ 780 if (pwdb_all > 34 && pwdb_all <= 42) 781 pwdb_all -= 2; 782 else if (pwdb_all > 26 && pwdb_all <= 34) 783 pwdb_all -= 6; 784 else if (pwdb_all > 14 && pwdb_all <= 26) 785 pwdb_all -= 8; 786 else if (pwdb_all > 4 && pwdb_all <= 14) 787 pwdb_all -= 4; 788 /* 789 * (3) Get Signal Quality (EVM) 790 */ 791 if (pwdb_all > 40) { 792 sq = 100; 793 } else { 794 sq = pcck_buf->sq_rpt; 795 if (pcck_buf->sq_rpt > 64) 796 sq = 0; 797 else if (pcck_buf->sq_rpt < 20) 798 sq = 100; 799 else 800 sq = ((64 - sq) * 100) / 44; 801 } 802 prframe->u.hdr.attrib.signal_qual = sq; 803 prframe->u.hdr.attrib.rx_mimo_signal_qual[0] = sq; 804 prframe->u.hdr.attrib.rx_mimo_signal_qual[1] = -1; 805 } else { 806 /* (1)Get RSSI for HT rate */ 807 for (i = 0; i < ((padapter->registrypriv.rf_config) & 808 0x0f); i++) { 809 rf_rx_num++; 810 rx_pwr[i] = ((pphy_head[PHY_STAT_GAIN_TRSW_SHT + i] 811 & 0x3F) * 2) - 110; 812 /* Translate DBM to percentage. */ 813 rssi = query_rx_pwr_percentage(rx_pwr[i]); 814 total_rssi += rssi; 815 } 816 /* (2)PWDB, Average PWDB calculated by hardware (for 817 * rate adaptive) 818 */ 819 rx_pwr_all = (((pphy_head[PHY_STAT_PWDB_ALL_SHT]) >> 1) & 0x7f) 820 - 106; 821 pwdb_all = query_rx_pwr_percentage(rx_pwr_all); 822 823 { 824 /* (3)EVM of HT rate */ 825 if (prframe->u.hdr.attrib.htc && 826 prframe->u.hdr.attrib.mcs_rate >= 20 && 827 prframe->u.hdr.attrib.mcs_rate <= 27) { 828 /* both spatial stream make sense */ 829 max_spatial_stream = 2; 830 } else { 831 /* only spatial stream 1 makes sense */ 832 max_spatial_stream = 1; 833 } 834 for (i = 0; i < max_spatial_stream; i++) { 835 evm = evm_db2percentage((pphy_head 836 [PHY_STAT_RXEVM_SHT + i]));/*dbm*/ 837 prframe->u.hdr.attrib.signal_qual = 838 (u8)(evm & 0xff); 839 prframe->u.hdr.attrib.rx_mimo_signal_qual[i] = 840 (u8)(evm & 0xff); 841 } 842 } 843 } 844 /* UI BSS List signal strength(in percentage), make it good looking, 845 * from 0~100. It is assigned to the BSS List in 846 * GetValueFromBeaconOrProbeRsp(). 847 */ 848 if (bcck_rate) { 849 prframe->u.hdr.attrib.signal_strength = 850 (u8)r8712_signal_scale_mapping(pwdb_all); 851 } else { 852 if (rf_rx_num != 0) 853 prframe->u.hdr.attrib.signal_strength = 854 (u8)(r8712_signal_scale_mapping(total_rssi /= 855 rf_rx_num)); 856 } 857 } 858 859 static void process_link_qual(struct _adapter *padapter, 860 union recv_frame *prframe) 861 { 862 u32 last_evm = 0, tmpVal; 863 struct rx_pkt_attrib *pattrib; 864 struct smooth_rssi_data *sqd = &padapter->recvpriv.signal_qual_data; 865 866 if (!prframe || !padapter) 867 return; 868 pattrib = &prframe->u.hdr.attrib; 869 if (pattrib->signal_qual != 0) { 870 /* 871 * 1. Record the general EVM to the sliding window. 872 */ 873 if (sqd->total_num++ >= PHY_LINKQUALITY_SLID_WIN_MAX) { 874 sqd->total_num = PHY_LINKQUALITY_SLID_WIN_MAX; 875 last_evm = sqd->elements[sqd->index]; 876 sqd->total_val -= last_evm; 877 } 878 sqd->total_val += pattrib->signal_qual; 879 sqd->elements[sqd->index++] = pattrib->signal_qual; 880 if (sqd->index >= PHY_LINKQUALITY_SLID_WIN_MAX) 881 sqd->index = 0; 882 883 /* <1> Showed on UI for user, in percentage. */ 884 tmpVal = sqd->total_val / sqd->total_num; 885 padapter->recvpriv.signal = (u8)tmpVal; 886 } 887 } 888 889 static void process_rssi(struct _adapter *padapter, union recv_frame *prframe) 890 { 891 u32 last_rssi, tmp_val; 892 struct rx_pkt_attrib *pattrib = &prframe->u.hdr.attrib; 893 struct smooth_rssi_data *ssd = &padapter->recvpriv.signal_strength_data; 894 895 if (ssd->total_num++ >= PHY_RSSI_SLID_WIN_MAX) { 896 ssd->total_num = PHY_RSSI_SLID_WIN_MAX; 897 last_rssi = ssd->elements[ssd->index]; 898 ssd->total_val -= last_rssi; 899 } 900 ssd->total_val += pattrib->signal_strength; 901 ssd->elements[ssd->index++] = pattrib->signal_strength; 902 if (ssd->index >= PHY_RSSI_SLID_WIN_MAX) 903 ssd->index = 0; 904 tmp_val = ssd->total_val / ssd->total_num; 905 padapter->recvpriv.rssi = (s8)translate2dbm(padapter, (u8)tmp_val); 906 } 907 908 static void process_phy_info(struct _adapter *padapter, 909 union recv_frame *prframe) 910 { 911 query_rx_phy_status(padapter, prframe); 912 process_rssi(padapter, prframe); 913 process_link_qual(padapter, prframe); 914 } 915 916 int recv_func(struct _adapter *padapter, void *pcontext) 917 { 918 struct rx_pkt_attrib *pattrib; 919 union recv_frame *prframe, *orig_prframe; 920 int retval = _SUCCESS; 921 struct __queue *pfree_recv_queue = &padapter->recvpriv.free_recv_queue; 922 struct mlme_priv *pmlmepriv = &padapter->mlmepriv; 923 924 prframe = pcontext; 925 orig_prframe = prframe; 926 pattrib = &prframe->u.hdr.attrib; 927 if (check_fwstate(pmlmepriv, WIFI_MP_STATE)) { 928 if (pattrib->crc_err == 1) 929 padapter->mppriv.rx_crcerrpktcount++; 930 else 931 padapter->mppriv.rx_pktcount++; 932 if (!check_fwstate(pmlmepriv, WIFI_MP_LPBK_STATE)) { 933 /* free this recv_frame */ 934 r8712_free_recvframe(orig_prframe, pfree_recv_queue); 935 goto _exit_recv_func; 936 } 937 } 938 /* check the frame crtl field and decache */ 939 retval = r8712_validate_recv_frame(padapter, prframe); 940 if (retval != _SUCCESS) { 941 /* free this recv_frame */ 942 r8712_free_recvframe(orig_prframe, pfree_recv_queue); 943 goto _exit_recv_func; 944 } 945 process_phy_info(padapter, prframe); 946 prframe = r8712_decryptor(padapter, prframe); 947 if (!prframe) { 948 retval = _FAIL; 949 goto _exit_recv_func; 950 } 951 prframe = r8712_recvframe_chk_defrag(padapter, prframe); 952 if (!prframe) 953 goto _exit_recv_func; 954 prframe = r8712_portctrl(padapter, prframe); 955 if (!prframe) { 956 retval = _FAIL; 957 goto _exit_recv_func; 958 } 959 retval = r8712_process_recv_indicatepkts(padapter, prframe); 960 if (retval != _SUCCESS) { 961 r8712_free_recvframe(orig_prframe, pfree_recv_queue); 962 goto _exit_recv_func; 963 } 964 _exit_recv_func: 965 return retval; 966 } 967 968 static void recvbuf2recvframe(struct _adapter *padapter, struct sk_buff *pskb) 969 { 970 u8 *pbuf, shift_sz = 0; 971 u8 frag, mf; 972 uint pkt_len; 973 u32 transfer_len; 974 struct recv_stat *prxstat; 975 u16 pkt_cnt, drvinfo_sz, pkt_offset, tmp_len, alloc_sz; 976 struct __queue *pfree_recv_queue; 977 _pkt *pkt_copy = NULL; 978 union recv_frame *precvframe = NULL; 979 struct recv_priv *precvpriv = &padapter->recvpriv; 980 981 pfree_recv_queue = &(precvpriv->free_recv_queue); 982 pbuf = pskb->data; 983 prxstat = (struct recv_stat *)pbuf; 984 pkt_cnt = (le32_to_cpu(prxstat->rxdw2) >> 16) & 0xff; 985 pkt_len = le32_to_cpu(prxstat->rxdw0) & 0x00003fff; 986 transfer_len = pskb->len; 987 /* Test throughput with Netgear 3700 (No security) with Chariot 3T3R 988 * pairs. The packet count will be a big number so that the containing 989 * packet will effect the Rx reordering. 990 */ 991 if (transfer_len < pkt_len) { 992 /* In this case, it means the MAX_RECVBUF_SZ is too small to 993 * get the data from 8712u. 994 */ 995 return; 996 } 997 do { 998 prxstat = (struct recv_stat *)pbuf; 999 pkt_len = le32_to_cpu(prxstat->rxdw0) & 0x00003fff; 1000 /* more fragment bit */ 1001 mf = (le32_to_cpu(prxstat->rxdw1) >> 27) & 0x1; 1002 /* ragmentation number */ 1003 frag = (le32_to_cpu(prxstat->rxdw2) >> 12) & 0xf; 1004 /* uint 2^3 = 8 bytes */ 1005 drvinfo_sz = (le32_to_cpu(prxstat->rxdw0) & 0x000f0000) >> 16; 1006 drvinfo_sz <<= 3; 1007 if (pkt_len <= 0) 1008 return; 1009 /* Qos data, wireless lan header length is 26 */ 1010 if ((le32_to_cpu(prxstat->rxdw0) >> 23) & 0x01) 1011 shift_sz = 2; 1012 precvframe = r8712_alloc_recvframe(pfree_recv_queue); 1013 if (!precvframe) 1014 return; 1015 INIT_LIST_HEAD(&precvframe->u.hdr.list); 1016 precvframe->u.hdr.precvbuf = NULL; /*can't access the precvbuf*/ 1017 precvframe->u.hdr.len = 0; 1018 tmp_len = pkt_len + drvinfo_sz + RXDESC_SIZE; 1019 pkt_offset = (u16)round_up(tmp_len, 128); 1020 /* for first fragment packet, driver need allocate 1536 + 1021 * drvinfo_sz + RXDESC_SIZE to defrag packet. 1022 */ 1023 if ((mf == 1) && (frag == 0)) 1024 /*1658+6=1664, 1664 is 128 alignment.*/ 1025 alloc_sz = max_t(u16, tmp_len, 1658); 1026 else 1027 alloc_sz = tmp_len; 1028 /* 2 is for IP header 4 bytes alignment in QoS packet case. 1029 * 4 is for skb->data 4 bytes alignment. 1030 */ 1031 alloc_sz += 6; 1032 pkt_copy = netdev_alloc_skb(padapter->pnetdev, alloc_sz); 1033 if (!pkt_copy) 1034 return; 1035 1036 precvframe->u.hdr.pkt = pkt_copy; 1037 skb_reserve(pkt_copy, 4 - ((addr_t)(pkt_copy->data) % 4)); 1038 skb_reserve(pkt_copy, shift_sz); 1039 memcpy(pkt_copy->data, pbuf, tmp_len); 1040 precvframe->u.hdr.rx_head = precvframe->u.hdr.rx_data = 1041 precvframe->u.hdr.rx_tail = pkt_copy->data; 1042 precvframe->u.hdr.rx_end = pkt_copy->data + alloc_sz; 1043 1044 recvframe_put(precvframe, tmp_len); 1045 recvframe_pull(precvframe, drvinfo_sz + RXDESC_SIZE); 1046 /* because the endian issue, driver avoid reference to the 1047 * rxstat after calling update_recvframe_attrib_from_recvstat(); 1048 */ 1049 update_recvframe_attrib_from_recvstat(&precvframe->u.hdr.attrib, 1050 prxstat); 1051 r8712_recv_entry(precvframe); 1052 transfer_len -= pkt_offset; 1053 pbuf += pkt_offset; 1054 pkt_cnt--; 1055 precvframe = NULL; 1056 pkt_copy = NULL; 1057 } while ((transfer_len > 0) && pkt_cnt > 0); 1058 } 1059 1060 static void recv_tasklet(unsigned long priv) 1061 { 1062 struct sk_buff *pskb; 1063 struct _adapter *padapter = (struct _adapter *)priv; 1064 struct recv_priv *precvpriv = &padapter->recvpriv; 1065 1066 while (NULL != (pskb = skb_dequeue(&precvpriv->rx_skb_queue))) { 1067 recvbuf2recvframe(padapter, pskb); 1068 skb_reset_tail_pointer(pskb); 1069 pskb->len = 0; 1070 if (!skb_cloned(pskb)) 1071 skb_queue_tail(&precvpriv->free_recv_skb_queue, pskb); 1072 else 1073 consume_skb(pskb); 1074 } 1075 } 1076