/* $OpenBSD: acx.c,v 1.16 2006/08/05 00:04:37 mglocker Exp $ */ /* * Copyright (c) 2006 Jonathan Gray * Copyright (c) 2006 Marcus Glocker * * Permission to use, copy, modify, and distribute this software for any * purpose with or without fee is hereby granted, provided that the above * copyright notice and this permission notice appear in all copies. * * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */ /* * Copyright (c) 2006 The DragonFly Project. All rights reserved. * * This code is derived from software contributed to The DragonFly Project * by Sepherosa Ziehau * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in * the documentation and/or other materials provided with the * distribution. * 3. Neither the name of The DragonFly Project nor the names of its * contributors may be used to endorse or promote products derived * from this software without specific, prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE * COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, * INCIDENTAL, SPECIAL, EXEMPLARY OR CONSEQUENTIAL DAMAGES (INCLUDING, * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. */ /* * Copyright (c) 2003-2004 wlan.kewl.org Project * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * * 3. All advertising materials mentioning features or use of this software * must display the following acknowledgement: * * This product includes software developed by the wlan.kewl.org Project. * * 4. Neither the name of the wlan.kewl.org Project nor the names of its * contributors may be used to endorse or promote products derived from * this software without specific prior written permission. * * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY * AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL * THE wlan.kewl.org Project BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; * OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ #include #include "bpfilter.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #if NBPFILTER > 0 #include #endif #ifdef INET #include #include #include #include #include #endif #include #include #include #include #include #define ACX_DEBUG #include #include #ifdef ACX_DEBUG int acxdebug = 1; #endif #define ACX_ENABLE_TXCHAN(sc, chan, ifname) \ do { \ if (acx_enable_txchan((sc), (chan)) != 0) { \ printf("%s: enable TX on channel %d failed\n", \ (ifname), (chan)); \ } \ } while (0) #define ACX_ENABLE_RXCHAN(sc, chan, ifname) \ do { \ if (acx_enable_rxchan((sc), (chan)) != 0) { \ printf("%s: enable RX on channel %d failed\n", \ (ifname), (chan)); \ } \ } while (0) int acx_attach(struct acx_softc *); int acx_detach(void *); void acx_shutdown(void *); int acx_init(struct ifnet *); int acx_stop(struct acx_softc *); void acx_init_info_reg(struct acx_softc *); int acx_config(struct acx_softc *); int acx_read_config(struct acx_softc *, struct acx_config *); int acx_write_config(struct acx_softc *, struct acx_config *); int acx_set_crypt_keys(struct acx_softc *); void acx_next_scan(void *); void acx_start(struct ifnet *); void acx_watchdog(struct ifnet *); int acx_ioctl(struct ifnet *, u_long, caddr_t); int acx_intr(void *); void acx_disable_intr(struct acx_softc *); void acx_enable_intr(struct acx_softc *); void acx_txeof(struct acx_softc *); void acx_txerr(struct acx_softc *, uint8_t); void acx_rxeof(struct acx_softc *); int acx_dma_alloc(struct acx_softc *); void acx_dma_free(struct acx_softc *); int acx_init_tx_ring(struct acx_softc *); int acx_init_rx_ring(struct acx_softc *); int acx_newbuf(struct acx_softc *, struct acx_rxbuf *, int); int acx_encap(struct acx_softc *, struct acx_txbuf *, struct mbuf *, struct ieee80211_node *, int); int acx_reset(struct acx_softc *); int acx_set_null_tmplt(struct acx_softc *); int acx_set_probe_req_tmplt(struct acx_softc *, const char *, int); int acx_set_probe_resp_tmplt(struct acx_softc *, const char *, int, int); int acx_set_beacon_tmplt(struct acx_softc *, const char *, int, int); int acx_read_eeprom(struct acx_softc *, uint32_t, uint8_t *); int acx_read_phyreg(struct acx_softc *, uint32_t, uint8_t *); #if 0 int acx_copyin_firmware(struct acx_softc *, struct ifreq *); #endif void acx_free_firmware(struct acx_softc *); int acx_load_firmware(struct acx_softc *, uint32_t, const uint8_t *, int); int acx_load_radio_firmware(struct acx_softc *, const char *); int acx_load_base_firmware(struct acx_softc *, const char *); struct ieee80211_node *acx_node_alloc(struct ieee80211com *); void acx_node_init(struct acx_softc *, struct acx_node *); void acx_node_update(struct acx_softc *, struct acx_node *, uint8_t, uint8_t); int acx_newstate(struct ieee80211com *, enum ieee80211_state, int); void acx_init_cmd_reg(struct acx_softc *); int acx_join_bss(struct acx_softc *, uint8_t, struct ieee80211_node *); int acx_enable_txchan(struct acx_softc *, uint8_t); int acx_enable_rxchan(struct acx_softc *, uint8_t); int acx_init_radio(struct acx_softc *, uint32_t, uint32_t); const struct ieee80211_rateset acx_rates_11b = { 4, { 2, 4, 11, 22 } }; const struct ieee80211_rateset acx_rates_11g = { 12, { 2, 4, 11, 22, 12, 18, 24, 36, 48, 72, 96, 108 } }; static int acx_chanscan_rate = 5; /* 5 seconds */ int acx_beacon_intvl = 100; /* 100 TU */ /* * Possible values for the second parameter of acx_join_bss() */ #define ACX_MODE_ADHOC 0 #define ACX_MODE_UNUSED 1 #define ACX_MODE_STA 2 #define ACX_MODE_AP 3 struct cfdriver acx_cd = { NULL, "acx", DV_IFNET }; int acx_attach(struct acx_softc *sc) { struct ieee80211com *ic = &sc->sc_ic; struct ifnet *ifp = &sc->sc_ic.ic_if; int i, error; bcopy(sc->sc_dev.dv_xname, ifp->if_xname, IFNAMSIZ); ifp->if_softc = sc; /* Initialize channel scanning timer */ timeout_set(&sc->sc_chanscan_timer, acx_next_scan, sc); /* Allocate busdma stuffs */ error = acx_dma_alloc(sc); if (error) return (error); /* Reset Hardware */ error = acx_reset(sc); if (error) return (error); /* Disable interrupts before firmware is loaded */ acx_disable_intr(sc); /* Get radio type and form factor */ #define EEINFO_RETRY_MAX 50 for (i = 0; i < EEINFO_RETRY_MAX; ++i) { uint16_t ee_info; ee_info = CSR_READ_2(sc, ACXREG_EEPROM_INFO); if (ACX_EEINFO_HAS_RADIO_TYPE(ee_info)) { sc->sc_form_factor = ACX_EEINFO_FORM_FACTOR(ee_info); sc->sc_radio_type = ACX_EEINFO_RADIO_TYPE(ee_info); break; } DELAY(10000); } if (i == EEINFO_RETRY_MAX) return (ENXIO); #undef EEINFO_RETRY_MAX printf(", radio %02x", sc->sc_radio_type); #ifdef DUMP_EEPROM for (i = 0; i < 0x40; ++i) { uint8_t val; error = acx_read_eeprom(sc, i, &val); if (i % 10 == 0) printf("\n"); printf("%02x ", val); } printf("\n"); #endif /* DUMP_EEPROM */ /* Get EEPROM version */ error = acx_read_eeprom(sc, ACX_EE_VERSION_OFS, &sc->sc_eeprom_ver); if (error) return (error); printf(", version %u", sc->sc_eeprom_ver); ifp->if_softc = sc; ifp->if_init = acx_init; ifp->if_ioctl = acx_ioctl; ifp->if_start = acx_start; ifp->if_watchdog = acx_watchdog; ifp->if_flags = IFF_SIMPLEX | IFF_BROADCAST | IFF_MULTICAST; strlcpy(ifp->if_xname, sc->sc_dev.dv_xname, IFNAMSIZ); /* Set channels */ for (i = 1; i <= 14; ++i) { ic->ic_channels[i].ic_freq = ieee80211_ieee2mhz(i, IEEE80211_CHAN_2GHZ); ic->ic_channels[i].ic_flags = sc->chip_chan_flags; } ic->ic_opmode = IEEE80211_M_STA; ic->ic_state = IEEE80211_S_INIT; /* * NOTE: Don't overwrite ic_caps set by chip specific code */ ic->ic_caps |= IEEE80211_C_WEP | /* WEP */ IEEE80211_C_IBSS | /* IBSS modes */ IEEE80211_C_SHPREAMBLE; /* Short preamble */ /* Get station id */ for (i = 0; i < IEEE80211_ADDR_LEN; ++i) { error = acx_read_eeprom(sc, sc->chip_ee_eaddr_ofs - i, &ic->ic_myaddr[i]); } printf(", address %s\n", ether_sprintf(ic->ic_myaddr)); if_attach(ifp); ieee80211_ifattach(ifp); /* Override node alloc */ ic->ic_node_alloc = acx_node_alloc; /* Override newstate */ sc->sc_newstate = ic->ic_newstate; ic->ic_newstate = acx_newstate; ieee80211_media_init(ifp, ieee80211_media_change, ieee80211_media_status); sc->sc_txrate_upd_intvl_min = 10; /* 10 seconds */ sc->sc_txrate_upd_intvl_max = 300; /* 5 minutes */ sc->sc_txrate_sample_thresh = 30; /* 30 packets */ sc->sc_long_retry_limit = 4; sc->sc_short_retry_limit = 7; sc->sc_msdu_lifetime = 4096; return (0); } int acx_detach(void *xsc) { struct acx_softc *sc = xsc; struct ieee80211com *ic = &sc->sc_ic; struct ifnet *ifp = &ic->ic_if; acx_stop(sc); acx_free_firmware(sc); ieee80211_ifdetach(ifp); acx_dma_free(sc); return (0); } void acx_shutdown(void *arg) { struct acx_softc *sc = arg; acx_stop(sc); } int acx_init(struct ifnet *ifp) { struct acx_softc *sc = ifp->if_softc; int error; error = acx_stop(sc); if (error) return (EIO); /* enable card if possible */ if (sc->sc_enable != NULL) (*sc->sc_enable)(sc); error = acx_init_tx_ring(sc); if (error) { printf("%s: can't initialize TX ring\n", sc->sc_dev.dv_xname); goto back; } error = acx_init_rx_ring(sc); if (error) { printf("%s: can't initialize RX ring\n", sc->sc_dev.dv_xname); goto back; } error = acx_load_base_firmware(sc, (sc->sc_flags & ACX_FLAG_ACX111) ? "tiacx111c16" : "tiacx100"); if (error) goto back; /* * Initialize command and information registers * NOTE: This should be done after base firmware is loaded */ acx_init_cmd_reg(sc); acx_init_info_reg(sc); sc->sc_flags |= ACX_FLAG_FW_LOADED; #if 0 if (sc->chip_post_basefw != NULL) { error = sc->chip_post_basefw(sc); if (error) goto back; } #endif /* ACX111 firmware is combined */ if (!(sc->sc_flags & ACX_FLAG_ACX111)) { error = acx_load_radio_firmware(sc, (sc->sc_radio_type == 11) ? "tiacx100r11" : "tiacx100r0D"); if (error) goto back; } error = sc->chip_init(sc); if (error) goto back; /* Get and set device various configuration */ error = acx_config(sc); if (error) goto back; /* Setup crypto stuffs */ if (sc->sc_ic.ic_flags & IEEE80211_F_WEPON) { error = acx_set_crypt_keys(sc); if (error) goto back; // sc->sc_ic.ic_flags &= ~IEEE80211_F_DROPUNENC; } /* Turn on power led */ CSR_CLRB_2(sc, ACXREG_GPIO_OUT, sc->chip_gpio_pled); acx_enable_intr(sc); ifp->if_flags |= IFF_RUNNING; ifp->if_flags &= ~IFF_OACTIVE; /* Begin background scanning */ ieee80211_new_state(&sc->sc_ic, IEEE80211_S_SCAN, -1); back: if (error) acx_stop(sc); return (0); } void acx_init_info_reg(struct acx_softc *sc) { sc->sc_info = CSR_READ_4(sc, ACXREG_INFO_REG_OFFSET); sc->sc_info_param = sc->sc_info + ACX_INFO_REG_SIZE; } int acx_set_crypt_keys(struct acx_softc *sc) { #if 0 struct ieee80211com *ic = &sc->sc_ic; struct acx_conf_wep_txkey wep_txkey; int i, error, got_wk = 0; for (i = 0; i < IEEE80211_WEP_NKID; ++i) { struct ieee80211_key *wk = &ic->ic_nw_keys[i]; if (wk->wk_keylen == 0) continue; if (sc->chip_hw_crypt) { error = sc->chip_set_wepkey(sc, wk, i); if (error) return error; got_wk = 1; } else if (wk->wk_flags & IEEE80211_KEY_XMIT) { wk->wk_flags |= IEEE80211_KEY_SWCRYPT; } } if (!got_wk || sc->chip_hw_crypt || ic->ic_def_txkey == IEEE80211_KEYIX_NONE) return 0; /* Set current WEP key index */ wep_txkey.wep_txkey = ic->ic_def_txkey; if (acx_set_wep_txkey_conf(sc, &wep_txkey) != 0) { printf("%s: set WEP txkey failed\n", sc->sc_dev.dv_xname); return ENXIO; } return 0; #endif return (ENXIO); } void acx_next_scan(void *arg) { struct acx_softc *sc = arg; struct ieee80211com *ic = &sc->sc_ic; struct ifnet *ifp = &ic->ic_if; if (ic->ic_state == IEEE80211_S_SCAN) ieee80211_next_scan(ifp); } int acx_stop(struct acx_softc *sc) { struct ieee80211com *ic = &sc->sc_ic; struct ifnet *ifp = &ic->ic_if; struct acx_buf_data *bd = &sc->sc_buf_data; struct acx_ring_data *rd = &sc->sc_ring_data; int i, error; sc->sc_firmware_ver = 0; sc->sc_hardware_id = 0; /* Reset hardware */ error = acx_reset(sc); if (error) return (error); /* Firmware no longer functions after hardware reset */ sc->sc_flags &= ~ACX_FLAG_FW_LOADED; acx_disable_intr(sc); /* Stop backgroud scanning */ timeout_del(&sc->sc_chanscan_timer); /* Turn off power led */ CSR_SETB_2(sc, ACXREG_GPIO_OUT, sc->chip_gpio_pled); /* Free TX mbuf */ for (i = 0; i < ACX_TX_DESC_CNT; ++i) { struct acx_txbuf *buf; struct ieee80211_node *ni; buf = &bd->tx_buf[i]; if (buf->tb_mbuf != NULL) { bus_dmamap_unload(sc->sc_dmat, buf->tb_mbuf_dmamap); m_freem(buf->tb_mbuf); buf->tb_mbuf = NULL; } ni = (struct ieee80211_node *)buf->tb_node; if (ni != NULL) ieee80211_release_node(ic, ni); buf->tb_node = NULL; } /* Clear TX host descriptors */ bzero(rd->tx_ring, ACX_TX_RING_SIZE); /* Free RX mbuf */ for (i = 0; i < ACX_RX_DESC_CNT; ++i) { if (bd->rx_buf[i].rb_mbuf != NULL) { bus_dmamap_unload(sc->sc_dmat, bd->rx_buf[i].rb_mbuf_dmamap); m_freem(bd->rx_buf[i].rb_mbuf); bd->rx_buf[i].rb_mbuf = NULL; } } /* Clear RX host descriptors */ bzero(rd->rx_ring, ACX_RX_RING_SIZE); ifp->if_timer = 0; ifp->if_flags &= ~(IFF_RUNNING | IFF_OACTIVE); ieee80211_new_state(&sc->sc_ic, IEEE80211_S_INIT, -1); /* disable card if possible */ if (sc->sc_disable != NULL) (*sc->sc_disable)(sc); return (0); } int acx_config(struct acx_softc *sc) { struct acx_config conf; int error; error = acx_read_config(sc, &conf); if (error) return (error); error = acx_write_config(sc, &conf); if (error) return (error); if (acx_set_probe_req_tmplt(sc, "", 0) != 0) { printf("%s: can't set probe req template " "(empty ssid)\n", sc->sc_dev.dv_xname); return (ENXIO); } /* XXX for PM?? */ if (acx_set_null_tmplt(sc) != 0) { printf("%s: can't set null data template\n", sc->sc_dev.dv_xname); return (ENXIO); } return (0); } int acx_read_config(struct acx_softc *sc, struct acx_config *conf) { struct acx_conf_regdom reg_dom; struct acx_conf_antenna ant; struct acx_conf_fwrev fw_rev; uint32_t fw_rev_no; uint8_t sen; int error; /* Get region domain */ if (acx_get_regdom_conf(sc, ®_dom) != 0) { printf("%s: can't get region domain\n", sc->sc_dev.dv_xname); return (ENXIO); } conf->regdom = reg_dom.regdom; DPRINTF(("%s: regdom %02x\n", sc->sc_dev.dv_xname, reg_dom.regdom)); /* Get antenna */ if (acx_get_antenna_conf(sc, &ant) != 0) { printf("%s: can't get antenna\n", sc->sc_dev.dv_xname); return (ENXIO); } conf->antenna = ant.antenna; DPRINTF(("%s: antenna %02x\n", sc->sc_dev.dv_xname, ant.antenna)); /* Get sensitivity XXX not used */ if (sc->sc_radio_type == ACX_RADIO_TYPE_MAXIM || sc->sc_radio_type == ACX_RADIO_TYPE_RFMD || sc->sc_radio_type == ACX_RADIO_TYPE_RALINK) { error = acx_read_phyreg(sc, ACXRV_PHYREG_SENSITIVITY, &sen); if (error) { printf("%s: can't get sensitivity\n", sc->sc_dev.dv_xname); return (error); } } else sen = 0; DPRINTF(("%s: sensitivity %02x\n", sc->sc_dev.dv_xname, sen)); /* Get firmware revision */ if (acx_get_fwrev_conf(sc, &fw_rev) != 0) { printf("%s: can't get firmware revision\n", sc->sc_dev.dv_xname); return (ENXIO); } if (strncmp(fw_rev.fw_rev, "Rev ", 4) != 0) { printf("%s: strange revision string -- %s\n", sc->sc_dev.dv_xname, fw_rev.fw_rev); fw_rev_no = 0x01090407; } else { /* * 01234 * "Rev xx.xx.xx.xx" * ^ Start from here */ fw_rev_no = fw_rev.fw_rev[0] << 24; fw_rev_no |= fw_rev.fw_rev[1] << 16; fw_rev_no |= fw_rev.fw_rev[2] << 8; fw_rev_no |= fw_rev.fw_rev[3]; } sc->sc_firmware_ver = fw_rev_no; sc->sc_hardware_id = letoh32(fw_rev.hw_id); DPRINTF(("%s: fw rev %08x, hw id %08x\n", sc->sc_dev.dv_xname, sc->sc_firmware_ver, sc->sc_hardware_id)); if (sc->chip_read_config != NULL) { error = sc->chip_read_config(sc, conf); if (error) return (error); } return (0); } int acx_write_config(struct acx_softc *sc, struct acx_config *conf) { struct acx_conf_nretry_short sretry; struct acx_conf_nretry_long lretry; struct acx_conf_msdu_lifetime msdu_lifetime; struct acx_conf_rate_fallback rate_fb; struct acx_conf_antenna ant; struct acx_conf_regdom reg_dom; struct acx_conf_rxopt rx_opt; struct ifnet *ifp = &sc->sc_ic.ic_if; int error; /* Set number of long/short retry */ sretry.nretry = sc->sc_short_retry_limit; if (acx_set_nretry_short_conf(sc, &sretry) != 0) { printf("%s: can't set short retry limit\n", ifp->if_xname); return (ENXIO); } lretry.nretry = sc->sc_long_retry_limit; if (acx_set_nretry_long_conf(sc, &lretry) != 0) { printf("%s: can't set long retry limit\n", ifp->if_xname); return (ENXIO); } /* Set MSDU lifetime */ msdu_lifetime.lifetime = htole32(sc->sc_msdu_lifetime); if (acx_set_msdu_lifetime_conf(sc, &msdu_lifetime) != 0) { printf("%s: can't set MSDU lifetime\n", ifp->if_xname); return (ENXIO); } /* Enable rate fallback */ rate_fb.ratefb_enable = 1; if (acx_set_rate_fallback_conf(sc, &rate_fb) != 0) { printf("%s: can't enable rate fallback\n", ifp->if_xname); return (ENXIO); } /* Set antenna */ ant.antenna = conf->antenna; if (acx_set_antenna_conf(sc, &ant) != 0) { printf("%s: can't set antenna\n", ifp->if_xname); return (ENXIO); } /* Set region domain */ reg_dom.regdom = conf->regdom; if (acx_set_regdom_conf(sc, ®_dom) != 0) { printf("%s: can't set region domain\n", ifp->if_xname); return (ENXIO); } if (sc->chip_write_config != NULL) { error = sc->chip_write_config(sc, conf); if (error) return (error); } /* What we want to receive and how to receive */ /* XXX may not belong here, acx_init() */ rx_opt.opt1 = RXOPT1_FILT_FDEST | RXOPT1_INCL_RXBUF_HDR; rx_opt.opt2 = RXOPT2_RECV_ASSOC_REQ | RXOPT2_RECV_AUTH | RXOPT2_RECV_BEACON | RXOPT2_RECV_CF | RXOPT2_RECV_CTRL | RXOPT2_RECV_DATA | RXOPT2_RECV_MGMT | RXOPT2_RECV_PROBE_REQ | RXOPT2_RECV_PROBE_RESP | RXOPT2_RECV_OTHER; if (acx_set_rxopt_conf(sc, &rx_opt) != 0) { printf("%s: can't set RX option\n", ifp->if_xname); return (ENXIO); } return (0); } int acx_ioctl(struct ifnet *ifp, u_long cmd, caddr_t data) { struct acx_softc *sc = ifp->if_softc; struct ieee80211com *ic = &sc->sc_ic; struct ifaddr *ifa; struct ifreq *ifr; int s, error = 0; s = splnet(); switch (cmd) { case SIOCSIFADDR: ifa = (struct ifaddr *)data; ifp->if_flags |= IFF_UP; #ifdef INET if (ifa->ifa_addr->sa_family == AF_INET) arp_ifinit(&ic->ic_ac, ifa); #endif /* FALLTHROUGH */ case SIOCSIFFLAGS: if (ifp->if_flags & IFF_UP) { if ((ifp->if_flags & IFF_RUNNING) == 0) acx_init(ifp); } else { if (ifp->if_flags & IFF_RUNNING) acx_stop(sc); } break; case SIOCADDMULTI: case SIOCDELMULTI: ifr = (struct ifreq *)data; error = (cmd == SIOCADDMULTI) ? ether_addmulti(ifr, &ic->ic_ac) : ether_delmulti(ifr, &ic->ic_ac); if (error == ENETRESET) error = 0; break; default: error = ieee80211_ioctl(ifp, cmd, data); break; } if (error == ENETRESET) { if ((ifp->if_flags & (IFF_RUNNING | IFF_UP)) == (IFF_RUNNING | IFF_UP)) acx_init(ifp); error = 0; } splx(s); return (error); } void acx_start(struct ifnet *ifp) { struct acx_softc *sc = ifp->if_softc; struct ieee80211com *ic = &sc->sc_ic; struct acx_buf_data *bd = &sc->sc_buf_data; struct acx_txbuf *buf; int trans, idx; if ((sc->sc_flags & ACX_FLAG_FW_LOADED) == 0 || (ifp->if_flags & IFF_RUNNING) == 0 || (ifp->if_flags & IFF_OACTIVE)) return; /* * NOTE: * We can't start from a random position that TX descriptor * is free, since hardware will be confused by that. * We have to follow the order of the TX ring. */ idx = bd->tx_free_start; trans = 0; for (buf = &bd->tx_buf[idx]; buf->tb_mbuf == NULL; buf = &bd->tx_buf[idx]) { struct ieee80211_frame *f; struct ieee80211_node *ni = NULL; struct mbuf *m; int rate; IF_DEQUEUE(&ic->ic_mgtq, m); if (m != NULL) { ni = (struct ieee80211_node *)m->m_pkthdr.rcvif; m->m_pkthdr.rcvif = NULL; #if 0 /* * Since mgmt data are transmitted at fixed rate * they will not be used to do rate control. */ if (ni != NULL) ieee80211_free_node(ni); #endif rate = 4; /* XXX 2Mb/s for mgmt packet */ } else if (!IFQ_IS_EMPTY(&ifp->if_snd)) { struct ether_header *eh; struct acx_node *node; if (ic->ic_state != IEEE80211_S_RUN) { DPRINTF(("%s: data packet dropped due to " "not RUN. Current state %d\n", ifp->if_xname, ic->ic_state)); break; } IFQ_DEQUEUE(&ifp->if_snd, m); if (m == NULL) break; if (m->m_len < sizeof(struct ether_header)) { m = m_pullup(m, sizeof(struct ether_header)); if (m == NULL) { ifp->if_oerrors++; continue; } } eh = mtod(m, struct ether_header *); ni = ieee80211_find_txnode(ic, eh->ether_dhost); if (ni == NULL) { m_freem(m); ifp->if_oerrors++; continue; } /* TODO power save */ m = ieee80211_encap(ifp, m, &ni); if (m == NULL) { ieee80211_release_node(ic, ni); ifp->if_oerrors++; continue; } node = (struct acx_node *)ni; if (node->nd_txrate < 0) { acx_node_init(sc, node); #if 0 if (ic->ic_opmode == IEEE80211_M_IBSS) { /* XXX * Add extra reference here, * so that some node (bss_dup) * will not be freed just after * they are allocated, which * make TX rate control impossible */ ieee80211_ref_node(ni); } #endif } rate = node->nd_rates.rs_rates[node->nd_txrate]; } else break; f = mtod(m, struct ieee80211_frame *); if ((f->i_fc[1] & IEEE80211_FC1_WEP) && !sc->chip_hw_crypt) { m = ieee80211_wep_crypt(ifp, m, 1); if (m == NULL) { ieee80211_release_node(ic, ni); m_freem(m); ifp->if_oerrors++; continue; } } if (acx_encap(sc, buf, m, ni, rate) != 0) { /* * NOTE: `m' will be freed in acx_encap() * if we reach here. */ if (ni != NULL) ieee80211_release_node(ic, ni); ifp->if_oerrors++; continue; } /* * NOTE: * 1) `m' should not be touched after acx_encap() * 2) `node' will be used to do TX rate control during * acx_txeof(), so it is not freed here. acx_txeof() * will free it for us */ trans = 1; bd->tx_used_count++; idx = (idx + 1) % ACX_TX_DESC_CNT; } bd->tx_free_start = idx; if (bd->tx_used_count == ACX_TX_DESC_CNT) ifp->if_flags |= IFF_OACTIVE; if (trans && ifp->if_timer == 0) ifp->if_timer = 5; } void acx_watchdog(struct ifnet *ifp) { printf("%s: watchdog timeout\n", ifp->if_xname); acx_txeof(ifp->if_softc); /* TODO */ } int acx_intr(void *arg) { struct acx_softc *sc = arg; uint16_t intr_status; if ((sc->sc_flags & ACX_FLAG_FW_LOADED) == 0) return (0); intr_status = CSR_READ_2(sc, ACXREG_INTR_STATUS_CLR); if (intr_status == ACXRV_INTR_ALL) { /* not our interrupt */ return (0); } intr_status &= sc->chip_intr_enable; if (intr_status == 0) { /* not interrupts we care about */ return (1); } /* Acknowledge all interrupts */ CSR_WRITE_2(sc, ACXREG_INTR_ACK, ACXRV_INTR_ALL); if (intr_status & ACXRV_INTR_TX_FINI) acx_txeof(sc); if (intr_status & ACXRV_INTR_RX_FINI) acx_rxeof(sc); return (1); } void acx_disable_intr(struct acx_softc *sc) { CSR_WRITE_2(sc, ACXREG_INTR_MASK, sc->chip_intr_disable); CSR_WRITE_2(sc, ACXREG_EVENT_MASK, 0); } void acx_enable_intr(struct acx_softc *sc) { /* Mask out interrupts that are not in the enable set */ CSR_WRITE_2(sc, ACXREG_INTR_MASK, ~sc->chip_intr_enable); CSR_WRITE_2(sc, ACXREG_EVENT_MASK, ACXRV_EVENT_DISABLE); } void acx_txeof(struct acx_softc *sc) { struct acx_buf_data *bd; struct acx_txbuf *buf; struct ifnet *ifp; int idx; ifp = &sc->sc_ic.ic_if; bd = &sc->sc_buf_data; idx = bd->tx_used_start; for (buf = &bd->tx_buf[idx]; buf->tb_mbuf != NULL; buf = &bd->tx_buf[idx]) { uint8_t ctrl, error; ctrl = FW_TXDESC_GETFIELD_1(sc, buf, f_tx_ctrl); if ((ctrl & (DESC_CTRL_HOSTOWN | DESC_CTRL_ACXDONE)) != (DESC_CTRL_HOSTOWN | DESC_CTRL_ACXDONE)) break; bus_dmamap_unload(sc->sc_dmat, buf->tb_mbuf_dmamap); m_freem(buf->tb_mbuf); buf->tb_mbuf = NULL; error = FW_TXDESC_GETFIELD_1(sc, buf, f_tx_error); if (error) { acx_txerr(sc, error); ifp->if_oerrors++; } else ifp->if_opackets++; if (buf->tb_node != NULL) { struct ieee80211com *ic; struct ieee80211_node *ni; ic = &sc->sc_ic; ni = (struct ieee80211_node *)buf->tb_node; acx_node_update(sc, buf->tb_node, buf->tb_rate, error); ieee80211_release_node(ic, ni); buf->tb_node = NULL; } FW_TXDESC_SETFIELD_1(sc, buf, f_tx_ctrl, DESC_CTRL_HOSTOWN); bd->tx_used_count--; idx = (idx + 1) % ACX_TX_DESC_CNT; } bd->tx_used_start = idx; ifp->if_timer = bd->tx_used_count == 0 ? 0 : 5; if (bd->tx_used_count != ACX_TX_DESC_CNT) { ifp->if_flags &= ~IFF_OACTIVE; acx_start(ifp); } } void acx_txerr(struct acx_softc *sc, uint8_t err) { struct ifnet *ifp = &sc->sc_ic.ic_if; struct acx_stats *stats = &sc->sc_stats; if (err == DESC_ERR_EXCESSIVE_RETRY) { /* * This a common error (see comment below), * so print it using DPRINTF() */ DPRINTF(("%s: TX failed -- excessive retry\n", sc->sc_dev.dv_xname)); } else printf("%s: TX failed -- ", ifp->if_xname); /* * Although `err' looks like bitmask, it never * has multiple bits set. */ switch (err) { #if 0 case DESC_ERR_OTHER_FRAG: /* XXX what's this */ printf("error in other fragment\n"); stats->err_oth_frag++; break; #endif case DESC_ERR_ABORT: printf("aborted\n"); stats->err_abort++; break; case DESC_ERR_PARAM: printf("wrong paramters in descriptor\n"); stats->err_param++; break; case DESC_ERR_NO_WEPKEY: printf("WEP key missing\n"); stats->err_no_wepkey++; break; case DESC_ERR_MSDU_TIMEOUT: printf("MSDU life timeout\n"); stats->err_msdu_timeout++; break; case DESC_ERR_EXCESSIVE_RETRY: /* * Possible causes: * 1) Distance is too long * 2) Transmit failed (e.g. no MAC level ACK) * 3) Chip overheated (this should be rare) */ stats->err_ex_retry++; break; case DESC_ERR_BUF_OVERFLOW: printf("buffer overflow\n"); stats->err_buf_oflow++; break; case DESC_ERR_DMA: printf("DMA error\n"); stats->err_dma++; break; default: printf("unknown error %d\n", err); stats->err_unkn++; break; } } void acx_rxeof(struct acx_softc *sc) { struct ieee80211com *ic = &sc->sc_ic; struct acx_ring_data *rd = &sc->sc_ring_data; struct acx_buf_data *bd = &sc->sc_buf_data; struct ifnet *ifp = &ic->ic_if; int idx, ready; bus_dmamap_sync(sc->sc_dmat, rd->rx_ring_dmamap, 0, rd->rx_ring_dmamap->dm_mapsize, BUS_DMASYNC_POSTREAD); /* * Locate first "ready" rx buffer, * start from last stopped position */ idx = bd->rx_scan_start; ready = 0; do { struct acx_rxbuf *buf; buf = &bd->rx_buf[idx]; if ((buf->rb_desc->h_ctrl & htole16(DESC_CTRL_HOSTOWN)) && (buf->rb_desc->h_status & htole32(DESC_STATUS_FULL))) { ready = 1; break; } idx = (idx + 1) % ACX_RX_DESC_CNT; } while (idx != bd->rx_scan_start); if (!ready) return; /* * NOTE: don't mess up `idx' here, it will * be used in the following code */ do { struct acx_rxbuf_hdr *head; struct acx_rxbuf *buf; struct mbuf *m; uint32_t desc_status; uint16_t desc_ctrl; int len, error; buf = &bd->rx_buf[idx]; desc_ctrl = letoh16(buf->rb_desc->h_ctrl); desc_status = letoh32(buf->rb_desc->h_status); if (!(desc_ctrl & DESC_CTRL_HOSTOWN) || !(desc_status & DESC_STATUS_FULL)) break; bus_dmamap_sync(sc->sc_dmat, buf->rb_mbuf_dmamap, 0, buf->rb_mbuf_dmamap->dm_mapsize, BUS_DMASYNC_POSTREAD); m = buf->rb_mbuf; error = acx_newbuf(sc, buf, 0); if (error) { ifp->if_ierrors++; goto next; } head = mtod(m, struct acx_rxbuf_hdr *); len = letoh16(head->rbh_len) & ACX_RXBUF_LEN_MASK; if (len >= sizeof(struct ieee80211_frame_min) && len < MCLBYTES) { struct ieee80211_frame *f; struct ieee80211_node *ni; m_adj(m, sizeof(struct acx_rxbuf_hdr) + sc->chip_rxbuf_exhdr); f = mtod(m, struct ieee80211_frame *); if ((f->i_fc[1] & IEEE80211_FC1_WEP) && sc->chip_hw_crypt) { /* Short circuit software WEP */ f->i_fc[1] &= ~IEEE80211_FC1_WEP; /* Do chip specific RX buffer processing */ if (sc->chip_proc_wep_rxbuf != NULL) { sc->chip_proc_wep_rxbuf(sc, m, &len); f = mtod(m, struct ieee80211_frame *); } } m->m_len = m->m_pkthdr.len = len; m->m_pkthdr.rcvif = &ic->ic_if; ni = ieee80211_find_rxnode(ic, f); ieee80211_input(ifp, m, ni, head->rbh_level, letoh32(head->rbh_time)); ieee80211_release_node(ic, ni); ifp->if_ipackets++; } else { m_freem(m); ifp->if_ierrors++; } next: buf->rb_desc->h_ctrl = htole16(desc_ctrl & ~DESC_CTRL_HOSTOWN); buf->rb_desc->h_status = 0; bus_dmamap_sync(sc->sc_dmat, rd->rx_ring_dmamap, 0, rd->rx_ring_dmamap->dm_mapsize, BUS_DMASYNC_PREWRITE); idx = (idx + 1) % ACX_RX_DESC_CNT; } while (idx != bd->rx_scan_start); /* * Record the position so that next * time we can start from it */ bd->rx_scan_start = idx; } int acx_reset(struct acx_softc *sc) { uint16_t reg; /* Halt ECPU */ CSR_SETB_2(sc, ACXREG_ECPU_CTRL, ACXRV_ECPU_HALT); /* Software reset */ reg = CSR_READ_2(sc, ACXREG_SOFT_RESET); CSR_WRITE_2(sc, ACXREG_SOFT_RESET, reg | ACXRV_SOFT_RESET); DELAY(100); CSR_WRITE_2(sc, ACXREG_SOFT_RESET, reg); /* Initialize EEPROM */ CSR_SETB_2(sc, ACXREG_EEPROM_INIT, ACXRV_EEPROM_INIT); DELAY(50000); /* Test whether ECPU is stopped */ reg = CSR_READ_2(sc, ACXREG_ECPU_CTRL); if (!(reg & ACXRV_ECPU_HALT)) { printf("%s: can't halt ECPU\n", sc->sc_dev.dv_xname); return (ENXIO); } return (0); } int acx_read_eeprom(struct acx_softc *sc, uint32_t offset, uint8_t *val) { int i; struct ifnet *ifp = &sc->sc_ic.ic_if; CSR_WRITE_4(sc, ACXREG_EEPROM_CONF, 0); CSR_WRITE_4(sc, ACXREG_EEPROM_ADDR, offset); CSR_WRITE_4(sc, ACXREG_EEPROM_CTRL, ACXRV_EEPROM_READ); #define EE_READ_RETRY_MAX 100 for (i = 0; i < EE_READ_RETRY_MAX; ++i) { if (CSR_READ_2(sc, ACXREG_EEPROM_CTRL) == 0) break; DELAY(10000); } if (i == EE_READ_RETRY_MAX) { printf("%s: can't read EEPROM offset %x (timeout)\n", ifp->if_xname, offset); return (ETIMEDOUT); } #undef EE_READ_RETRY_MAX *val = CSR_READ_1(sc, ACXREG_EEPROM_DATA); return (0); } int acx_read_phyreg(struct acx_softc *sc, uint32_t reg, uint8_t *val) { struct ifnet *ifp = &sc->sc_ic.ic_if; int i; CSR_WRITE_4(sc, ACXREG_PHY_ADDR, reg); CSR_WRITE_4(sc, ACXREG_PHY_CTRL, ACXRV_PHY_READ); #define PHY_READ_RETRY_MAX 100 for (i = 0; i < PHY_READ_RETRY_MAX; ++i) { if (CSR_READ_4(sc, ACXREG_PHY_CTRL) == 0) break; DELAY(10000); } if (i == PHY_READ_RETRY_MAX) { printf("%s: can't read phy reg %x (timeout)\n", ifp->if_xname, reg); return (ETIMEDOUT); } #undef PHY_READ_RETRY_MAX *val = CSR_READ_1(sc, ACXREG_PHY_DATA); return (0); } void acx_write_phyreg(struct acx_softc *sc, uint32_t reg, uint8_t val) { CSR_WRITE_4(sc, ACXREG_PHY_DATA, val); CSR_WRITE_4(sc, ACXREG_PHY_ADDR, reg); CSR_WRITE_4(sc, ACXREG_PHY_CTRL, ACXRV_PHY_WRITE); } #if 0 int acx_copyin_firmware(struct acx_softc *sc, struct ifreq *req) { struct acx_firmware ufw, *kfw; uint8_t *base_fw, *radio_fw; int error; kfw = &sc->sc_firmware; base_fw = NULL; radio_fw = NULL; error = copyin(req->ifr_data, &ufw, sizeof(ufw)); if (error) return error; /* * For combined base firmware, there is no radio firmware. * But base firmware must exist. */ if (ufw.base_fw_len <= 0 || ufw.radio_fw_len < 0) return EINVAL; base_fw = malloc(ufw.base_fw_len, M_DEVBUF, M_INTWAIT); error = copyin(ufw.base_fw, base_fw, ufw.base_fw_len); if (error) goto fail; if (ufw.radio_fw_len > 0) { radio_fw = malloc(ufw.radio_fw_len, M_DEVBUF, M_INTWAIT); error = copyin(ufw.radio_fw, radio_fw, ufw.radio_fw_len); if (error) goto fail; } kfw->base_fw_len = ufw.base_fw_len; if (kfw->base_fw != NULL) free(kfw->base_fw, M_DEVBUF); kfw->base_fw = base_fw; kfw->radio_fw_len = ufw.radio_fw_len; if (kfw->radio_fw != NULL) free(kfw->radio_fw, M_DEVBUF); kfw->radio_fw = radio_fw; return 0; fail: if (base_fw != NULL) free(base_fw, M_DEVBUF); if (radio_fw != NULL) free(radio_fw, M_DEVBUF); return error; } #endif void acx_free_firmware(struct acx_softc *sc) { struct acx_firmware *fw = &sc->sc_firmware; if (fw->base_fw != NULL) { free(fw->base_fw, M_DEVBUF); fw->base_fw = NULL; fw->base_fw_len = 0; } if (fw->radio_fw != NULL) { free(fw->radio_fw, M_DEVBUF); fw->radio_fw = NULL; fw->radio_fw_len = 0; } } int acx_load_base_firmware(struct acx_softc *sc, const char *name) { struct ifnet *ifp = &sc->sc_ic.ic_if; int i, error; uint8_t *ucode; size_t size; error = loadfirmware(name, &ucode, &size); if (error != 0) { printf("%s: error %d, could not read microcode %s!\n", ifp->if_xname, error, name); return (EIO); } /* Load base firmware */ error = acx_load_firmware(sc, 0, ucode, size); free(ucode, M_DEVBUF); if (error) { printf("%s: can't load base firmware\n", ifp->if_xname); return error; } DPRINTF(("%s: base firmware loaded\n", sc->sc_dev.dv_xname)); /* Start ECPU */ CSR_WRITE_2(sc, ACXREG_ECPU_CTRL, ACXRV_ECPU_START); /* Wait for ECPU to be up */ for (i = 0; i < 500; ++i) { uint16_t reg; reg = CSR_READ_2(sc, ACXREG_INTR_STATUS); if (reg & ACXRV_INTR_FCS_THRESH) { CSR_WRITE_2(sc, ACXREG_INTR_ACK, ACXRV_INTR_FCS_THRESH); return (0); } DELAY(10000); } printf("%s: can't initialize ECPU (timeout)\n", ifp->if_xname); return (ENXIO); } int acx_load_radio_firmware(struct acx_softc *sc, const char *name) { struct ifnet *ifp = &sc->sc_ic.ic_if; struct acx_conf_mmap mem_map; uint32_t radio_fw_ofs; int error; uint8_t *ucode; size_t size; error = loadfirmware(name, &ucode, &size); if (error != 0) { printf("%s: error %d, could not read microcode %s!\n", ifp->if_xname, error, name); return (EIO); } /* * Get the position, where base firmware is loaded, so that * radio firmware can be loaded after it. */ if (acx_get_mmap_conf(sc, &mem_map) != 0) return (ENXIO); radio_fw_ofs = letoh32(mem_map.code_end); /* Put ECPU into sleeping state, before loading radio firmware */ if (acx_sleep(sc) != 0) return (ENXIO); /* Load radio firmware */ error = acx_load_firmware(sc, radio_fw_ofs, ucode, size); if (error) { printf("%s: can't load radio firmware\n", ifp->if_xname); return (ENXIO); } DPRINTF(("%s: radio firmware loaded\n", sc->sc_dev.dv_xname)); /* Wake up sleeping ECPU, after radio firmware is loaded */ if (acx_wakeup(sc) != 0) return (ENXIO); /* Initialize radio */ if (acx_init_radio(sc, radio_fw_ofs, size) != 0) return (ENXIO); /* Verify radio firmware's loading position */ if (acx_get_mmap_conf(sc, &mem_map) != 0) return (ENXIO); if (letoh32(mem_map.code_end) != radio_fw_ofs + size) { printf("%s: loaded radio firmware position mismatch\n", ifp->if_xname); return (ENXIO); } DPRINTF(("%s: radio firmware initialized\n", sc->sc_dev.dv_xname)); return (0); } int acx_load_firmware(struct acx_softc *sc, uint32_t offset, const uint8_t *data, int data_len) { struct ifnet *ifp = &sc->sc_ic.ic_if; const uint32_t *fw; u_int32_t csum = 0; int i, fw_len; for (i = 4; i < data_len; i++) csum += data[i]; fw = (const uint32_t *)data; if (*fw != csum) { printf("%s: firmware checksum 0x%x does not match 0x%x!\n", ifp->if_xname, fw, csum); return (ENXIO); } /* skip csum + length */ data += 8; data_len -= 8; fw = (const uint32_t *)data; fw_len = data_len / sizeof(uint32_t); /* * LOADFW_AUTO_INC only works with some older firmware: * 1) acx100's firmware * 2) acx111's firmware whose rev is 0x00010011 */ /* Load firmware */ CSR_WRITE_4(sc, ACXREG_FWMEM_START, ACXRV_FWMEM_START_OP); #ifndef LOADFW_AUTO_INC CSR_WRITE_4(sc, ACXREG_FWMEM_CTRL, 0); #else CSR_WRITE_4(sc, ACXREG_FWMEM_CTRL, ACXRV_FWMEM_ADDR_AUTOINC); CSR_WRITE_4(sc, ACXREG_FWMEM_ADDR, offset); #endif for (i = 0; i < fw_len; ++i) { #ifndef LOADFW_AUTO_INC CSR_WRITE_4(sc, ACXREG_FWMEM_ADDR, offset + (i * 4)); #endif CSR_WRITE_4(sc, ACXREG_FWMEM_DATA, betoh32(fw[i])); } /* Verify firmware */ CSR_WRITE_4(sc, ACXREG_FWMEM_START, ACXRV_FWMEM_START_OP); #ifndef LOADFW_AUTO_INC CSR_WRITE_4(sc, ACXREG_FWMEM_CTRL, 0); #else CSR_WRITE_4(sc, ACXREG_FWMEM_CTRL, ACXRV_FWMEM_ADDR_AUTOINC); CSR_WRITE_4(sc, ACXREG_FWMEM_ADDR, offset); #endif for (i = 0; i < fw_len; ++i) { uint32_t val; #ifndef LOADFW_AUTO_INC CSR_WRITE_4(sc, ACXREG_FWMEM_ADDR, offset + (i * 4)); #endif val = CSR_READ_4(sc, ACXREG_FWMEM_DATA); if (betoh32(fw[i]) != val) { printf("%s: firmware mismatch fw %08x loaded %08x\n", ifp->if_xname, fw[i], val); return (ENXIO); } } return (0); } struct ieee80211_node * acx_node_alloc(struct ieee80211com *ic) { struct acx_node *node; node = malloc(sizeof(struct acx_node), M_DEVBUF, M_NOWAIT); if (node == NULL) return (NULL); bzero(node, (sizeof(struct acx_node))); node->nd_txrate = -1; return ((struct ieee80211_node *)node); } void acx_node_init(struct acx_softc *sc, struct acx_node *node) { struct ieee80211_rateset *nd_rset, *ic_rset, *cp_rset; struct ieee80211com *ic; int i, j, c; ic = &sc->sc_ic; nd_rset = &node->nd_node.ni_rates; ic_rset = &ic->ic_sup_rates[sc->chip_phymode]; cp_rset = &node->nd_rates; c = 0; #define IEEERATE(rate) ((rate) & IEEE80211_RATE_VAL) for (i = 0; i < nd_rset->rs_nrates; ++i) { uint8_t nd_rate = IEEERATE(nd_rset->rs_rates[i]); for (j = 0; j < ic_rset->rs_nrates; ++j) { if (nd_rate == IEEERATE(ic_rset->rs_rates[j])) { cp_rset->rs_rates[c++] = nd_rate; if (node->nd_txrate < 0) { /* XXX slow start?? */ node->nd_txrate = 0; node->nd_node.ni_txrate = i; } break; } } } if (node->nd_node.ni_txrate < 0) panic("no compat rates"); DPRINTF(("%s: node rate %d\n", sc->sc_dev.dv_xname, IEEERATE(nd_rset->rs_rates[node->nd_node.ni_txrate]))); #undef IEEERATE cp_rset->rs_nrates = c; node->nd_txrate_upd_intvl = sc->sc_txrate_upd_intvl_min; node->nd_txrate_upd_time = time_second; node->nd_txrate_sample = 0; } void acx_node_update(struct acx_softc *sc, struct acx_node *node, uint8_t rate, uint8_t error) { struct ieee80211_rateset *nd_rset, *cp_rset; int i, time_diff; nd_rset = &node->nd_node.ni_rates; cp_rset = &node->nd_rates; time_diff = time_second - node->nd_txrate_upd_time; if (error == DESC_ERR_MSDU_TIMEOUT || error == DESC_ERR_EXCESSIVE_RETRY) { uint8_t cur_rate; /* Reset packet sample counter */ node->nd_txrate_sample = 0; if (rate > cp_rset->rs_rates[node->nd_txrate]) { /* * This rate has already caused toubles, * so don't count it in here */ return; } /* Double TX rate updating interval */ node->nd_txrate_upd_intvl *= 2; if (node->nd_txrate_upd_intvl <= sc->sc_txrate_upd_intvl_min) { node->nd_txrate_upd_intvl = sc->sc_txrate_upd_intvl_min; } else if (node->nd_txrate_upd_intvl > sc->sc_txrate_upd_intvl_max) { node->nd_txrate_upd_intvl = sc->sc_txrate_upd_intvl_max; } if (node->nd_txrate == 0) return; node->nd_txrate_upd_time += time_diff; /* TX rate down */ node->nd_txrate--; cur_rate = cp_rset->rs_rates[node->nd_txrate + 1]; while (cp_rset->rs_rates[node->nd_txrate] > cur_rate) { if (node->nd_txrate - 1 > 0) node->nd_txrate--; else break; } DPRINTF(("%s: rate down %6D %d -> %d\n", sc->sc_dev.dv_xname, node->nd_node.ni_macaddr, ":", cp_rset->rs_rates[node->nd_txrate + 1], cp_rset->rs_rates[node->nd_txrate])); } else if (node->nd_txrate + 1 < node->nd_rates.rs_nrates) { uint8_t cur_rate; node->nd_txrate_sample++; if (node->nd_txrate_sample <= sc->sc_txrate_sample_thresh || time_diff <= node->nd_txrate_upd_intvl) return; /* Reset packet sample counter */ node->nd_txrate_sample = 0; /* Half TX rate updating interval */ node->nd_txrate_upd_intvl /= 2; if (node->nd_txrate_upd_intvl < sc->sc_txrate_upd_intvl_min) { node->nd_txrate_upd_intvl = sc->sc_txrate_upd_intvl_min; } else if (node->nd_txrate_upd_intvl > sc->sc_txrate_upd_intvl_max) { node->nd_txrate_upd_intvl = sc->sc_txrate_upd_intvl_max; } node->nd_txrate_upd_time += time_diff; /* TX Rate up */ node->nd_txrate++; cur_rate = cp_rset->rs_rates[node->nd_txrate - 1]; while (cp_rset->rs_rates[node->nd_txrate] < cur_rate) { if (node->nd_txrate + 1 < cp_rset->rs_nrates) node->nd_txrate++; else break; } DPRINTF(("%s: rate up %6D %d -> %d\n", sc->sc_dev.dv_xname, node->nd_node.ni_macaddr, ":", cur_rate, cp_rset->rs_rates[node->nd_txrate])); } else return; #define IEEERATE(rate) ((rate) & IEEE80211_RATE_VAL) /* XXX Update ieee80211_node's TX rate index */ for (i = 0; i < nd_rset->rs_nrates; ++i) { if (IEEERATE(nd_rset->rs_rates[i]) == cp_rset->rs_rates[node->nd_txrate]) { node->nd_node.ni_txrate = i; break; } } #undef IEEERATE } int acx_newstate(struct ieee80211com *ic, enum ieee80211_state nstate, int arg) { struct acx_softc *sc = ic->ic_if.if_softc; struct ifnet *ifp = &ic->ic_if; int error = 0; switch (nstate) { case IEEE80211_S_SCAN: if (ic->ic_state != IEEE80211_S_INIT) { uint8_t chan; chan = ieee80211_chan2ieee(ic, ic->ic_bss->ni_chan); ACX_ENABLE_TXCHAN(sc, chan, ifp->if_xname); ACX_ENABLE_RXCHAN(sc, chan, ifp->if_xname); timeout_add(&sc->sc_chanscan_timer, hz / acx_chanscan_rate); } break; case IEEE80211_S_AUTH: if (ic->ic_opmode == IEEE80211_M_STA) { struct ieee80211_node *ni; #ifdef ACX_DEBUG int i; #endif ni = ic->ic_bss; if (acx_join_bss(sc, ACX_MODE_STA, ni) != 0) { printf("%s: join BSS failed\n", ifp->if_xname); error = 1; goto back; } DPRINTF(("%s: join BSS\n", sc->sc_dev.dv_xname)); if (ic->ic_state == IEEE80211_S_ASSOC) { DPRINTF(("%s: change from assoc to run\n", sc->sc_dev.dv_xname)); ic->ic_state = IEEE80211_S_RUN; } #ifdef ACX_DEBUG printf("%s: AP rates: ", sc->sc_dev.dv_xname); for (i = 0; i < ni->ni_rates.rs_nrates; ++i) printf("%d ", ni->ni_rates.rs_rates[i]); ieee80211_print_essid(ni->ni_essid, ni->ni_esslen); printf(" %6D\n", ni->ni_bssid, ":"); #endif } break; case IEEE80211_S_RUN: if (ic->ic_opmode == IEEE80211_M_IBSS) { struct ieee80211_node *ni; uint8_t chan; ni = ic->ic_bss; chan = ieee80211_chan2ieee(ic, ni->ni_chan); error = 1; if (acx_enable_txchan(sc, chan) != 0) { printf("%s: enable TX on channel %d failed\n", ifp->if_xname, chan); goto back; } if (acx_enable_rxchan(sc, chan) != 0) { printf("%s: enable RX on channel %d failed\n", ifp->if_xname, chan); goto back; } if (acx_set_beacon_tmplt(sc, ni->ni_essid, ni->ni_esslen, chan) != 0) { printf("%s: set bescon template failed\n", ifp->if_xname); goto back; } if (acx_set_probe_resp_tmplt(sc, ni->ni_essid, ni->ni_esslen, chan) != 0) { printf("%s: set probe response template " "failed\n", ifp->if_xname); goto back; } if (acx_join_bss(sc, ACX_MODE_ADHOC, ni) != 0) { printf("%s: join IBSS failed\n", ifp->if_xname); goto back; } DPRINTF(("%s: join IBSS\n", sc->sc_dev.dv_xname)); error = 0; } break; default: break; } back: if (error) { /* XXX */ nstate = IEEE80211_S_INIT; arg = -1; } return (sc->sc_newstate(ic, nstate, arg)); } int acx_init_tmplt_ordered(struct acx_softc *sc) { /* * NOTE: * Order of templates initialization: * 1) Probe request * 2) NULL data * 3) Beacon * 4) TIM * 5) Probe response * Above order is critical to get a correct memory map. */ if (acx_init_probe_req_tmplt(sc) != 0) return (1); if (acx_init_null_data_tmplt(sc) != 0) return (1); if (acx_init_beacon_tmplt(sc) != 0) return (1); if (acx_init_tim_tmplt(sc) != 0) return (1); if (acx_init_probe_resp_tmplt(sc) != 0) return (1); #undef CALL_SET_TMPLT return (0); } #if 0 void acx_ring_dma_addr(void *arg, bus_dma_segment_t *seg, int nseg, int error) { *((uint32_t *)arg) = seg->ds_addr; } #endif int acx_dma_alloc(struct acx_softc *sc) { struct acx_ring_data *rd = &sc->sc_ring_data; struct acx_buf_data *bd = &sc->sc_buf_data; struct ifnet *ifp = &sc->sc_ic.ic_if; int i, error, nsegs; /* Allocate DMA stuffs for RX descriptors */ error = bus_dmamap_create(sc->sc_dmat, ACX_RX_RING_SIZE, 1, ACX_RX_RING_SIZE, 0, BUS_DMA_NOWAIT, &rd->rx_ring_dmamap); if (error) { printf("%s: can't create rx ring dma tag\n", sc->sc_dev.dv_xname); return (error); } error = bus_dmamem_alloc(sc->sc_dmat, ACX_RX_RING_SIZE, PAGE_SIZE, 0, &rd->rx_ring_seg, 1, &nsegs, BUS_DMA_NOWAIT); if (error != 0) { printf("%s: can't allocate rx ring dma memory\n", sc->sc_dev.dv_xname); return (error); } error = bus_dmamem_map(sc->sc_dmat, &rd->rx_ring_seg, nsegs, ACX_RX_RING_SIZE, (caddr_t *)&rd->rx_ring, BUS_DMA_NOWAIT); if (error != 0) { printf("%s: could not map rx desc DMA memory\n", sc->sc_dev.dv_xname); return (error); } error = bus_dmamap_load(sc->sc_dmat, rd->rx_ring_dmamap, rd->rx_ring, ACX_RX_RING_SIZE, NULL, BUS_DMA_WAITOK); if (error) { printf("%s: can't get rx ring dma address\n", sc->sc_dev.dv_xname); bus_dmamem_free(sc->sc_dmat, &rd->rx_ring_seg, 1); return (error); } rd->rx_ring_paddr = rd->rx_ring_dmamap->dm_segs[0].ds_addr; /* Allocate DMA stuffs for TX descriptors */ error = bus_dmamap_create(sc->sc_dmat, ACX_TX_RING_SIZE, 1, ACX_TX_RING_SIZE, 0, BUS_DMA_NOWAIT, &rd->tx_ring_dmamap); if (error) { printf("%s: can't create tx ring dma tag\n", ifp->if_xname); return (error); } error = bus_dmamem_alloc(sc->sc_dmat, ACX_TX_RING_SIZE, PAGE_SIZE, 0, &rd->tx_ring_seg, 1, &nsegs, BUS_DMA_NOWAIT); if (error) { printf("%s: can't allocate tx ring dma memory\n", ifp->if_xname); return (error); } error = bus_dmamem_map(sc->sc_dmat, &rd->tx_ring_seg, nsegs, ACX_TX_RING_SIZE, (caddr_t *)&rd->tx_ring, BUS_DMA_NOWAIT); if (error != 0) { printf("%s: could not map tx desc DMA memory\n", sc->sc_dev.dv_xname); return (error); } error = bus_dmamap_load(sc->sc_dmat, rd->tx_ring_dmamap, rd->tx_ring, ACX_TX_RING_SIZE, NULL, BUS_DMA_WAITOK); if (error) { printf("%s: can't get tx ring dma address\n", ifp->if_xname); bus_dmamem_free(sc->sc_dmat, &rd->tx_ring_seg, 1); return (error); } rd->tx_ring_paddr = rd->tx_ring_dmamap->dm_segs[0].ds_addr; /* Create a spare RX DMA map */ error = bus_dmamap_create(sc->sc_dmat, MCLBYTES, 1, MCLBYTES, 0, 0, &bd->mbuf_tmp_dmamap); if (error) { printf("%s: can't create tmp mbuf dma map\n", ifp->if_xname); return (error); } /* Create DMA map for RX mbufs */ for (i = 0; i < ACX_RX_DESC_CNT; ++i) { error = bus_dmamap_create(sc->sc_dmat, MCLBYTES, 1, MCLBYTES, 0, 0, &bd->rx_buf[i].rb_mbuf_dmamap); if (error) { printf("%s: can't create rx mbuf dma map (%d)\n", ifp->if_xname, i); return (error); } bd->rx_buf[i].rb_desc = &rd->rx_ring[i]; } /* Create DMA map for TX mbufs */ for (i = 0; i < ACX_TX_DESC_CNT; ++i) { error = bus_dmamap_create(sc->sc_dmat, MCLBYTES, 1, MCLBYTES, 0, 0, &bd->tx_buf[i].tb_mbuf_dmamap); if (error) { printf("%s: can't create tx mbuf dma map (%d)\n", ifp->if_xname, i); return (error); } bd->tx_buf[i].tb_desc1 = &rd->tx_ring[i * 2]; bd->tx_buf[i].tb_desc2 = &rd->tx_ring[(i * 2) + 1]; } return (0); } void acx_dma_free(struct acx_softc *sc) { struct acx_ring_data *rd = &sc->sc_ring_data; struct acx_buf_data *bd = &sc->sc_buf_data; int i; if (rd->rx_ring != NULL) { bus_dmamap_unload(sc->sc_dmat, rd->rx_ring_dmamap); bus_dmamem_free(sc->sc_dmat, &rd->rx_ring_seg, 1); } if (rd->tx_ring != NULL) { bus_dmamap_unload(sc->sc_dmat, rd->tx_ring_dmamap); bus_dmamem_free(sc->sc_dmat, &rd->tx_ring_seg, 1); } for (i = 0; i < ACX_RX_DESC_CNT; ++i) { if (bd->rx_buf[i].rb_desc != NULL) { if (bd->rx_buf[i].rb_mbuf != NULL) { bus_dmamap_unload(sc->sc_dmat, bd->rx_buf[i].rb_mbuf_dmamap); m_freem(bd->rx_buf[i].rb_mbuf); } bus_dmamap_destroy(sc->sc_dmat, bd->rx_buf[i].rb_mbuf_dmamap); } } for (i = 0; i < ACX_TX_DESC_CNT; ++i) { if (bd->tx_buf[i].tb_desc1 != NULL) { if (bd->tx_buf[i].tb_mbuf != NULL) { bus_dmamap_unload(sc->sc_dmat, bd->tx_buf[i].tb_mbuf_dmamap); m_freem(bd->tx_buf[i].tb_mbuf); } bus_dmamap_destroy(sc->sc_dmat, bd->tx_buf[i].tb_mbuf_dmamap); } } if (bd->mbuf_tmp_dmamap != NULL) bus_dmamap_destroy(sc->sc_dmat, bd->mbuf_tmp_dmamap); } int acx_init_tx_ring(struct acx_softc *sc) { struct acx_ring_data *rd; struct acx_buf_data *bd; uint32_t paddr; int i; rd = &sc->sc_ring_data; paddr = rd->tx_ring_paddr; for (i = 0; i < (ACX_TX_DESC_CNT * 2) - 1; ++i) { paddr += sizeof(struct acx_host_desc); bzero(&rd->tx_ring[i], sizeof(struct acx_host_desc)); rd->tx_ring[i].h_ctrl = htole16(DESC_CTRL_HOSTOWN); if (i == (ACX_TX_DESC_CNT * 2) - 1) rd->tx_ring[i].h_next_desc = htole32(rd->tx_ring_paddr); else rd->tx_ring[i].h_next_desc = htole32(paddr); } bus_dmamap_sync(sc->sc_dmat, rd->tx_ring_dmamap, 0, rd->tx_ring_dmamap->dm_mapsize, BUS_DMASYNC_PREWRITE); bd = &sc->sc_buf_data; bd->tx_free_start = 0; bd->tx_used_start = 0; bd->tx_used_count = 0; return (0); } int acx_init_rx_ring(struct acx_softc *sc) { struct acx_ring_data *rd; struct acx_buf_data *bd; uint32_t paddr; int i; bd = &sc->sc_buf_data; rd = &sc->sc_ring_data; paddr = rd->rx_ring_paddr; for (i = 0; i < ACX_RX_DESC_CNT; ++i) { int error; paddr += sizeof(struct acx_host_desc); bzero(&rd->rx_ring[i], sizeof(struct acx_host_desc)); error = acx_newbuf(sc, &bd->rx_buf[i], 1); if (error) return (error); if (i == ACX_RX_DESC_CNT - 1) rd->rx_ring[i].h_next_desc = htole32(rd->rx_ring_paddr); else rd->rx_ring[i].h_next_desc = htole32(paddr); } bus_dmamap_sync(sc->sc_dmat, rd->rx_ring_dmamap, 0, rd->rx_ring_dmamap->dm_mapsize, BUS_DMASYNC_PREWRITE); bd->rx_scan_start = 0; return (0); } int acx_newbuf(struct acx_softc *sc, struct acx_rxbuf *rb, int wait) { struct acx_buf_data *bd; struct mbuf *m; bus_dmamap_t map; uint32_t paddr; int error; bd = &sc->sc_buf_data; MGETHDR(m, wait ? M_WAITOK : M_DONTWAIT, MT_DATA); if (m == NULL) return (ENOBUFS); MCLGET(m, wait ? M_WAITOK : M_DONTWAIT); if (!(m->m_flags & M_EXT)) { m_freem(m); return (ENOBUFS); } m->m_len = m->m_pkthdr.len = MCLBYTES; error = bus_dmamap_load_mbuf(sc->sc_dmat, bd->mbuf_tmp_dmamap, m, wait ? BUS_DMA_WAITOK : BUS_DMA_NOWAIT); if (error) { m_freem(m); printf("%s: can't map rx mbuf %d\n", sc->sc_dev.dv_xname, error); return (error); } /* Unload originally mapped mbuf */ bus_dmamap_unload(sc->sc_dmat, rb->rb_mbuf_dmamap); /* Swap this dmamap with tmp dmamap */ map = rb->rb_mbuf_dmamap; rb->rb_mbuf_dmamap = bd->mbuf_tmp_dmamap; bd->mbuf_tmp_dmamap = map; paddr = rb->rb_mbuf_dmamap->dm_segs[0].ds_addr; rb->rb_mbuf = m; rb->rb_desc->h_data_paddr = htole32(paddr); rb->rb_desc->h_data_len = htole16(m->m_len); bus_dmamap_sync(sc->sc_dmat, rb->rb_mbuf_dmamap, 0, rb->rb_mbuf_dmamap->dm_mapsize, BUS_DMASYNC_PREREAD); return (0); } int acx_encap(struct acx_softc *sc, struct acx_txbuf *txbuf, struct mbuf *m, struct ieee80211_node *ni, int rate) { struct acx_ring_data *rd = &sc->sc_ring_data; struct acx_node *node = (struct acx_node *)ni; struct ifnet *ifp = &sc->sc_ic.ic_if; uint32_t paddr; uint8_t ctrl; int error; if (txbuf->tb_mbuf != NULL) panic("free TX buf has mbuf installed\n"); error = 0; if (m->m_pkthdr.len > MCLBYTES) { printf("%s: mbuf too big\n", ifp->if_xname); error = E2BIG; goto back; } else if (m->m_pkthdr.len < ACX_FRAME_HDRLEN) { printf("%s: mbuf too small\n", ifp->if_xname); error = EINVAL; goto back; } error = bus_dmamap_load_mbuf(sc->sc_dmat, txbuf->tb_mbuf_dmamap, m, BUS_DMA_NOWAIT); if (error && error != EFBIG) { printf("%s: can't map tx mbuf1 %d\n", sc->sc_dev.dv_xname, error); goto back; } if (error) { /* error == EFBIG */ /* too many fragments, linearize */ struct mbuf *mnew; error = 0; MGETHDR(mnew, M_DONTWAIT, MT_DATA); if (mnew == NULL) { m_freem(m); error = ENOBUFS; printf("%s: can't defrag tx mbuf\n", ifp->if_xname); goto back; } M_DUP_PKTHDR(mnew, m); if (m->m_pkthdr.len > MHLEN) { MCLGET(mnew, M_DONTWAIT); if (!(mnew->m_flags & M_EXT)) { m_freem(m); m_freem(mnew); error = ENOBUFS; } } if (error) { printf("%s: can't defrag tx mbuf\n", ifp->if_xname); goto back; } m_copydata(m, 0, m->m_pkthdr.len, mtod(mnew, caddr_t)); m_freem(m); mnew->m_len = mnew->m_pkthdr.len; m = mnew; error = bus_dmamap_load_mbuf(sc->sc_dmat, txbuf->tb_mbuf_dmamap, m, BUS_DMA_NOWAIT); if (error) { printf("%s: can't map tx mbuf2 %d\n", sc->sc_dev.dv_xname, error); goto back; } } error = 0; bus_dmamap_sync(sc->sc_dmat, txbuf->tb_mbuf_dmamap, 0, txbuf->tb_mbuf_dmamap->dm_mapsize, BUS_DMASYNC_PREWRITE); txbuf->tb_mbuf = m; txbuf->tb_node = node; txbuf->tb_rate = rate; /* * TX buffers are accessed in following way: * acx_fw_txdesc -> acx_host_desc -> buffer * * It is quite strange that acx also querys acx_host_desc next to * the one we have assigned to acx_fw_txdesc even if first one's * acx_host_desc.h_data_len == acx_fw_txdesc.f_tx_len * * So we allocate two acx_host_desc for one acx_fw_txdesc and * assign the first acx_host_desc to acx_fw_txdesc * * For acx111 * host_desc1.h_data_len = buffer_len * host_desc2.h_data_len = buffer_len - mac_header_len * * For acx100 * host_desc1.h_data_len = mac_header_len * host_desc2.h_data_len = buffer_len - mac_header_len */ paddr = txbuf->tb_mbuf_dmamap->dm_segs[0].ds_addr; txbuf->tb_desc1->h_data_paddr = htole32(paddr); txbuf->tb_desc2->h_data_paddr = htole32(paddr + ACX_FRAME_HDRLEN); txbuf->tb_desc1->h_data_len = htole16(sc->chip_txdesc1_len ? sc->chip_txdesc1_len : m->m_pkthdr.len); txbuf->tb_desc2->h_data_len = htole16(m->m_pkthdr.len - ACX_FRAME_HDRLEN); /* * NOTE: * We can't simply assign f_tx_ctrl, we will first read it back * and change it bit by bit */ ctrl = FW_TXDESC_GETFIELD_1(sc, txbuf, f_tx_ctrl); ctrl |= sc->chip_fw_txdesc_ctrl; /* extra chip specific flags */ ctrl &= ~(DESC_CTRL_HOSTOWN | DESC_CTRL_ACXDONE); FW_TXDESC_SETFIELD_4(sc, txbuf, f_tx_len, m->m_pkthdr.len); FW_TXDESC_SETFIELD_1(sc, txbuf, f_tx_error, 0); FW_TXDESC_SETFIELD_1(sc, txbuf, f_tx_ack_fail, 0); FW_TXDESC_SETFIELD_1(sc, txbuf, f_tx_rts_fail, 0); FW_TXDESC_SETFIELD_1(sc, txbuf, f_tx_rts_ok, 0); sc->chip_set_fw_txdesc_rate(sc, txbuf, rate); txbuf->tb_desc1->h_ctrl = 0; txbuf->tb_desc2->h_ctrl = 0; bus_dmamap_sync(sc->sc_dmat, rd->tx_ring_dmamap, 0, rd->tx_ring_dmamap->dm_mapsize, BUS_DMASYNC_PREWRITE); FW_TXDESC_SETFIELD_1(sc, txbuf, f_tx_ctrl2, 0); FW_TXDESC_SETFIELD_1(sc, txbuf, f_tx_ctrl, ctrl); /* Tell chip to inform us about TX completion */ CSR_WRITE_2(sc, ACXREG_INTR_TRIG, ACXRV_TRIG_TX_FINI); back: if (error) m_freem(m); return (error); } int acx_set_null_tmplt(struct acx_softc *sc) { struct acx_tmplt_null_data n; struct ieee80211_frame *f; struct ieee80211com *ic = &sc->sc_ic; bzero(&n, sizeof(n)); f = &n.data; f->i_fc[0] = IEEE80211_FC0_SUBTYPE_NODATA | IEEE80211_FC0_TYPE_DATA; IEEE80211_ADDR_COPY(f->i_addr1, etherbroadcastaddr); IEEE80211_ADDR_COPY(f->i_addr2, ic->ic_myaddr); IEEE80211_ADDR_COPY(f->i_addr3, etherbroadcastaddr); return (_acx_set_null_data_tmplt(sc, &n, sizeof(n))); } int acx_set_probe_req_tmplt(struct acx_softc *sc, const char *ssid, int ssid_len) { struct acx_tmplt_probe_req req; struct ieee80211_frame *f; struct ieee80211com *ic = &sc->sc_ic; uint8_t *v; int vlen; bzero(&req, sizeof(req)); f = &req.data.u_data.f; f->i_fc[0] = IEEE80211_FC0_SUBTYPE_PROBE_REQ | IEEE80211_FC0_TYPE_MGT; IEEE80211_ADDR_COPY(f->i_addr1, etherbroadcastaddr); IEEE80211_ADDR_COPY(f->i_addr2, ic->ic_myaddr); IEEE80211_ADDR_COPY(f->i_addr3, etherbroadcastaddr); v = req.data.u_data.var; v = ieee80211_add_ssid(v, ssid, ssid_len); v = ieee80211_add_rates(v, &ic->ic_sup_rates[sc->chip_phymode]); v = ieee80211_add_xrates(v, &ic->ic_sup_rates[sc->chip_phymode]); vlen = v - req.data.u_data.var; return (_acx_set_probe_req_tmplt(sc, &req, ACX_TMPLT_PROBE_REQ_SIZ(vlen))); } int acx_set_probe_resp_tmplt(struct acx_softc *sc, const char *ssid, int ssid_len, int chan) { struct acx_tmplt_probe_resp resp; struct ieee80211_frame *f; struct ieee80211com *ic = &sc->sc_ic; uint8_t *v; int vlen; bzero(&resp, sizeof(resp)); f = &resp.data.u_data.f; f->i_fc[0] = IEEE80211_FC0_SUBTYPE_PROBE_RESP | IEEE80211_FC0_TYPE_MGT; IEEE80211_ADDR_COPY(f->i_addr1, etherbroadcastaddr); IEEE80211_ADDR_COPY(f->i_addr2, ic->ic_myaddr); IEEE80211_ADDR_COPY(f->i_addr3, ic->ic_myaddr); resp.data.u_data.beacon_intvl = htole16(acx_beacon_intvl); resp.data.u_data.cap = htole16(IEEE80211_CAPINFO_IBSS); v = resp.data.u_data.var; v = ieee80211_add_ssid(v, ssid, ssid_len); v = ieee80211_add_rates(v, &ic->ic_sup_rates[sc->chip_phymode]); *v++ = IEEE80211_ELEMID_DSPARMS; *v++ = 1; *v++ = chan; /* This should after IBSS or TIM, but acx always keeps them last */ v = ieee80211_add_xrates(v, &ic->ic_sup_rates[sc->chip_phymode]); if (ic->ic_opmode == IEEE80211_M_IBSS) { *v++ = IEEE80211_ELEMID_IBSSPARMS; *v++ = 2; } vlen = v - resp.data.u_data.var; return (_acx_set_probe_resp_tmplt(sc, &resp, ACX_TMPLT_PROBE_RESP_SIZ(vlen))); } /* XXX C&P of acx_set_probe_resp_tmplt() */ int acx_set_beacon_tmplt(struct acx_softc *sc, const char *ssid, int ssid_len, int chan) { struct acx_tmplt_beacon beacon; struct ieee80211_frame *f; struct ieee80211com *ic = &sc->sc_ic; uint8_t *v; int vlen; bzero(&beacon, sizeof(beacon)); f = &beacon.data.u_data.f; f->i_fc[0] = IEEE80211_FC0_SUBTYPE_BEACON | IEEE80211_FC0_TYPE_MGT; IEEE80211_ADDR_COPY(f->i_addr1, etherbroadcastaddr); IEEE80211_ADDR_COPY(f->i_addr2, ic->ic_myaddr); IEEE80211_ADDR_COPY(f->i_addr3, ic->ic_myaddr); beacon.data.u_data.beacon_intvl = htole16(acx_beacon_intvl); beacon.data.u_data.cap = htole16(IEEE80211_CAPINFO_IBSS); v = beacon.data.u_data.var; v = ieee80211_add_ssid(v, ssid, ssid_len); v = ieee80211_add_rates(v, &ic->ic_sup_rates[sc->chip_phymode]); *v++ = IEEE80211_ELEMID_DSPARMS; *v++ = 1; *v++ = chan; /* This should after IBSS or TIM, but acx always keeps them last */ v = ieee80211_add_xrates(v, &ic->ic_sup_rates[sc->chip_phymode]); if (ic->ic_opmode == IEEE80211_M_IBSS) { *v++ = IEEE80211_ELEMID_IBSSPARMS; *v++ = 2; } vlen = v - beacon.data.u_data.var; return (_acx_set_beacon_tmplt(sc, &beacon, ACX_TMPLT_BEACON_SIZ(vlen))); } void acx_init_cmd_reg(struct acx_softc *sc) { sc->sc_cmd = CSR_READ_4(sc, ACXREG_CMD_REG_OFFSET); sc->sc_cmd_param = sc->sc_cmd + ACX_CMD_REG_SIZE; /* Clear command & status */ CMD_WRITE_4(sc, 0); } int acx_join_bss(struct acx_softc *sc, uint8_t mode, struct ieee80211_node *node) { uint8_t bj_buf[BSS_JOIN_BUFLEN]; struct bss_join_hdr *bj; int i, dtim_intvl; bzero(bj_buf, sizeof(bj_buf)); bj = (struct bss_join_hdr *)bj_buf; for (i = 0; i < IEEE80211_ADDR_LEN; ++i) bj->bssid[i] = node->ni_bssid[IEEE80211_ADDR_LEN - i - 1]; bj->beacon_intvl = htole16(acx_beacon_intvl); /* TODO tunable */ dtim_intvl = sc->sc_ic.ic_opmode == IEEE80211_M_IBSS ? 1 : 10; sc->chip_set_bss_join_param(sc, bj->chip_spec, dtim_intvl); bj->ndata_txrate = ACX_NDATA_TXRATE_2; bj->ndata_txopt = 0; bj->mode = mode; bj->channel = ieee80211_chan2ieee(&sc->sc_ic, node->ni_chan); bj->esslen = node->ni_esslen; bcopy(node->ni_essid, bj->essid, node->ni_esslen); DPRINTF(("%s: join BSS/IBSS on channel %d\n", sc->sc_dev.dv_xname, bj->channel)); return (acx_exec_command(sc, ACXCMD_JOIN_BSS, bj, BSS_JOIN_PARAM_SIZE(bj), NULL, 0)); } int acx_enable_txchan(struct acx_softc *sc, uint8_t chan) { return (acx_exec_command(sc, ACXCMD_ENABLE_TXCHAN, &chan, sizeof(chan), NULL, 0)); } int acx_enable_rxchan(struct acx_softc *sc, uint8_t chan) { return (acx_exec_command(sc, ACXCMD_ENABLE_RXCHAN, &chan, sizeof(chan), NULL, 0)); } int acx_get_conf(struct acx_softc *sc, uint16_t conf_id, void *conf, uint16_t conf_len) { struct acx_conf *confcom; if (conf_len < sizeof(*confcom)) { printf("%s: %s configure data is too short\n", sc->sc_dev.dv_xname, __func__); return (1); } confcom = conf; confcom->conf_id = htole16(conf_id); confcom->conf_data_len = htole16(conf_len - sizeof(*confcom)); return (acx_exec_command(sc, ACXCMD_GET_CONF, confcom, sizeof(*confcom), conf, conf_len)); } int acx_set_conf(struct acx_softc *sc, uint16_t conf_id, void *conf, uint16_t conf_len) { struct acx_conf *confcom; if (conf_len < sizeof(*confcom)) { printf("%s: %s configure data is too short\n", sc->sc_dev.dv_xname, __func__); return (1); } confcom = conf; confcom->conf_id = htole16(conf_id); confcom->conf_data_len = htole16(conf_len - sizeof(*confcom)); return (acx_exec_command(sc, ACXCMD_SET_CONF, conf, conf_len, NULL, 0)); } int acx_set_tmplt(struct acx_softc *sc, uint16_t cmd, void *tmplt, uint16_t tmplt_len) { uint16_t *size; if (tmplt_len < sizeof(*size)) { printf("%s: %s template is too short\n", sc->sc_dev.dv_xname, __func__); return (1); } size = tmplt; *size = htole16(tmplt_len - sizeof(*size)); return (acx_exec_command(sc, cmd, tmplt, tmplt_len, NULL, 0)); } int acx_init_radio(struct acx_softc *sc, uint32_t radio_ofs, uint32_t radio_len) { struct radio_init r; r.radio_ofs = htole32(radio_ofs); r.radio_len = htole32(radio_len); return (acx_exec_command(sc, ACXCMD_INIT_RADIO, &r, sizeof(r), NULL, 0)); } int acx_exec_command(struct acx_softc *sc, uint16_t cmd, void *param, uint16_t param_len, void *result, uint16_t result_len) { uint16_t status; int i, ret; if ((sc->sc_flags & ACX_FLAG_FW_LOADED) == 0) { printf("%s: cmd 0x%04x failed (base firmware not loaded)\n", sc->sc_dev.dv_xname, cmd); return (1); } ret = 0; if (param != NULL && param_len != 0) { /* Set command param */ CMDPRM_WRITE_REGION_1(sc, param, param_len); } /* Set command */ CMD_WRITE_4(sc, cmd); /* Exec command */ CSR_WRITE_2(sc, ACXREG_INTR_TRIG, ACXRV_TRIG_CMD_FINI); DELAY(50); /* XXX maybe 100 */ /* Wait for command to complete */ if (cmd == ACXCMD_INIT_RADIO) { /* XXX radio initialization is extremely long */ tsleep(&cmd, 0, "rdinit", (150 * hz) / 1000); /* 150ms */ } #define CMDWAIT_RETRY_MAX 1000 for (i = 0; i < CMDWAIT_RETRY_MAX; ++i) { uint16_t reg; reg = CSR_READ_2(sc, ACXREG_INTR_STATUS); if (reg & ACXRV_INTR_CMD_FINI) { CSR_WRITE_2(sc, ACXREG_INTR_ACK, ACXRV_INTR_CMD_FINI); break; } DELAY(50); } if (i == CMDWAIT_RETRY_MAX) { printf("%s: cmd %04x failed (timeout)\n", sc->sc_dev.dv_xname, cmd); ret = 1; goto back; } #undef CMDWAIT_RETRY_MAX /* Get command exec status */ status = (CMD_READ_4(sc) >> ACX_CMD_STATUS_SHIFT); if (status != ACX_CMD_STATUS_OK) { printf("%s: cmd %04x failed\n", sc->sc_dev.dv_xname, cmd); ret = 1; goto back; } if (result != NULL && result_len != 0) { /* Get command result */ CMDPRM_READ_REGION_1(sc, result, result_len); } back: CMD_WRITE_4(sc, 0); return (ret); }