1 /******************************************************************************
3 * Copyright(c) 2003 - 2012 Intel Corporation. All rights reserved.
5 * Portions of this file are derived from the ipw3945 project, as well
6 * as portionhelp of the ieee80211 subsystem header files.
8 * This program is free software; you can redistribute it and/or modify it
9 * under the terms of version 2 of the GNU General Public License as
10 * published by the Free Software Foundation.
12 * This program is distributed in the hope that it will be useful, but WITHOUT
13 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
14 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
17 * You should have received a copy of the GNU General Public License along with
18 * this program; if not, write to the Free Software Foundation, Inc.,
19 * 51 Franklin Street, Fifth Floor, Boston, MA 02110, USA
21 * The full GNU General Public License is included in this distribution in the
22 * file called LICENSE.
24 * Contact Information:
25 * Intel Linux Wireless <ilw@linux.intel.com>
26 * Intel Corporation, 5200 N.E. Elam Young Parkway, Hillsboro, OR 97124-6497
28 *****************************************************************************/
30 #include <linux/etherdevice.h>
31 #include <linux/slab.h>
32 #include <linux/sched.h>
33 #include <net/mac80211.h>
34 #include <asm/unaligned.h>
35 #include "iwl-eeprom.h"
39 #include "iwl-agn-calib.h"
41 #include "iwl-shared.h"
43 #define IWL_CMD_ENTRY(x) [x] = #x
45 const char *iwl_dvm_cmd_strings[REPLY_MAX] = {
46 IWL_CMD_ENTRY(REPLY_ALIVE),
47 IWL_CMD_ENTRY(REPLY_ERROR),
48 IWL_CMD_ENTRY(REPLY_ECHO),
49 IWL_CMD_ENTRY(REPLY_RXON),
50 IWL_CMD_ENTRY(REPLY_RXON_ASSOC),
51 IWL_CMD_ENTRY(REPLY_QOS_PARAM),
52 IWL_CMD_ENTRY(REPLY_RXON_TIMING),
53 IWL_CMD_ENTRY(REPLY_ADD_STA),
54 IWL_CMD_ENTRY(REPLY_REMOVE_STA),
55 IWL_CMD_ENTRY(REPLY_REMOVE_ALL_STA),
56 IWL_CMD_ENTRY(REPLY_TXFIFO_FLUSH),
57 IWL_CMD_ENTRY(REPLY_WEPKEY),
58 IWL_CMD_ENTRY(REPLY_TX),
59 IWL_CMD_ENTRY(REPLY_LEDS_CMD),
60 IWL_CMD_ENTRY(REPLY_TX_LINK_QUALITY_CMD),
61 IWL_CMD_ENTRY(COEX_PRIORITY_TABLE_CMD),
62 IWL_CMD_ENTRY(COEX_MEDIUM_NOTIFICATION),
63 IWL_CMD_ENTRY(COEX_EVENT_CMD),
64 IWL_CMD_ENTRY(REPLY_QUIET_CMD),
65 IWL_CMD_ENTRY(REPLY_CHANNEL_SWITCH),
66 IWL_CMD_ENTRY(CHANNEL_SWITCH_NOTIFICATION),
67 IWL_CMD_ENTRY(REPLY_SPECTRUM_MEASUREMENT_CMD),
68 IWL_CMD_ENTRY(SPECTRUM_MEASURE_NOTIFICATION),
69 IWL_CMD_ENTRY(POWER_TABLE_CMD),
70 IWL_CMD_ENTRY(PM_SLEEP_NOTIFICATION),
71 IWL_CMD_ENTRY(PM_DEBUG_STATISTIC_NOTIFIC),
72 IWL_CMD_ENTRY(REPLY_SCAN_CMD),
73 IWL_CMD_ENTRY(REPLY_SCAN_ABORT_CMD),
74 IWL_CMD_ENTRY(SCAN_START_NOTIFICATION),
75 IWL_CMD_ENTRY(SCAN_RESULTS_NOTIFICATION),
76 IWL_CMD_ENTRY(SCAN_COMPLETE_NOTIFICATION),
77 IWL_CMD_ENTRY(BEACON_NOTIFICATION),
78 IWL_CMD_ENTRY(REPLY_TX_BEACON),
79 IWL_CMD_ENTRY(WHO_IS_AWAKE_NOTIFICATION),
80 IWL_CMD_ENTRY(QUIET_NOTIFICATION),
81 IWL_CMD_ENTRY(REPLY_TX_PWR_TABLE_CMD),
82 IWL_CMD_ENTRY(MEASURE_ABORT_NOTIFICATION),
83 IWL_CMD_ENTRY(REPLY_BT_CONFIG),
84 IWL_CMD_ENTRY(REPLY_STATISTICS_CMD),
85 IWL_CMD_ENTRY(STATISTICS_NOTIFICATION),
86 IWL_CMD_ENTRY(REPLY_CARD_STATE_CMD),
87 IWL_CMD_ENTRY(CARD_STATE_NOTIFICATION),
88 IWL_CMD_ENTRY(MISSED_BEACONS_NOTIFICATION),
89 IWL_CMD_ENTRY(REPLY_CT_KILL_CONFIG_CMD),
90 IWL_CMD_ENTRY(SENSITIVITY_CMD),
91 IWL_CMD_ENTRY(REPLY_PHY_CALIBRATION_CMD),
92 IWL_CMD_ENTRY(REPLY_RX_PHY_CMD),
93 IWL_CMD_ENTRY(REPLY_RX_MPDU_CMD),
94 IWL_CMD_ENTRY(REPLY_RX),
95 IWL_CMD_ENTRY(REPLY_COMPRESSED_BA),
96 IWL_CMD_ENTRY(CALIBRATION_CFG_CMD),
97 IWL_CMD_ENTRY(CALIBRATION_RES_NOTIFICATION),
98 IWL_CMD_ENTRY(CALIBRATION_COMPLETE_NOTIFICATION),
99 IWL_CMD_ENTRY(REPLY_TX_POWER_DBM_CMD),
100 IWL_CMD_ENTRY(TEMPERATURE_NOTIFICATION),
101 IWL_CMD_ENTRY(TX_ANT_CONFIGURATION_CMD),
102 IWL_CMD_ENTRY(REPLY_BT_COEX_PROFILE_NOTIF),
103 IWL_CMD_ENTRY(REPLY_BT_COEX_PRIO_TABLE),
104 IWL_CMD_ENTRY(REPLY_BT_COEX_PROT_ENV),
105 IWL_CMD_ENTRY(REPLY_WIPAN_PARAMS),
106 IWL_CMD_ENTRY(REPLY_WIPAN_RXON),
107 IWL_CMD_ENTRY(REPLY_WIPAN_RXON_TIMING),
108 IWL_CMD_ENTRY(REPLY_WIPAN_RXON_ASSOC),
109 IWL_CMD_ENTRY(REPLY_WIPAN_QOS_PARAM),
110 IWL_CMD_ENTRY(REPLY_WIPAN_WEPKEY),
111 IWL_CMD_ENTRY(REPLY_WIPAN_P2P_CHANNEL_SWITCH),
112 IWL_CMD_ENTRY(REPLY_WIPAN_NOA_NOTIFICATION),
113 IWL_CMD_ENTRY(REPLY_WIPAN_DEACTIVATION_COMPLETE),
114 IWL_CMD_ENTRY(REPLY_WOWLAN_PATTERNS),
115 IWL_CMD_ENTRY(REPLY_WOWLAN_WAKEUP_FILTER),
116 IWL_CMD_ENTRY(REPLY_WOWLAN_TSC_RSC_PARAMS),
117 IWL_CMD_ENTRY(REPLY_WOWLAN_TKIP_PARAMS),
118 IWL_CMD_ENTRY(REPLY_WOWLAN_KEK_KCK_MATERIAL),
119 IWL_CMD_ENTRY(REPLY_WOWLAN_GET_STATUS),
120 IWL_CMD_ENTRY(REPLY_D3_CONFIG),
124 /******************************************************************************
126 * Generic RX handler implementations
128 ******************************************************************************/
130 static int iwlagn_rx_reply_error(struct iwl_priv *priv,
131 struct iwl_rx_cmd_buffer *rxb,
132 struct iwl_device_cmd *cmd)
134 struct iwl_rx_packet *pkt = rxb_addr(rxb);
135 struct iwl_error_resp *err_resp = (void *)pkt->data;
137 IWL_ERR(priv, "Error Reply type 0x%08X cmd REPLY_ERROR (0x%02X) "
138 "seq 0x%04X ser 0x%08X\n",
139 le32_to_cpu(err_resp->error_type),
141 le16_to_cpu(err_resp->bad_cmd_seq_num),
142 le32_to_cpu(err_resp->error_info));
146 static int iwlagn_rx_csa(struct iwl_priv *priv, struct iwl_rx_cmd_buffer *rxb,
147 struct iwl_device_cmd *cmd)
149 struct iwl_rx_packet *pkt = rxb_addr(rxb);
150 struct iwl_csa_notification *csa = (void *)pkt->data;
153 * See iwlagn_mac_channel_switch.
155 struct iwl_rxon_context *ctx = &priv->contexts[IWL_RXON_CTX_BSS];
156 struct iwl_rxon_cmd *rxon = (void *)&ctx->active;
158 if (!test_bit(STATUS_CHANNEL_SWITCH_PENDING, &priv->status))
161 if (!le32_to_cpu(csa->status) && csa->channel == priv->switch_channel) {
162 rxon->channel = csa->channel;
163 ctx->staging.channel = csa->channel;
164 IWL_DEBUG_11H(priv, "CSA notif: channel %d\n",
165 le16_to_cpu(csa->channel));
166 iwl_chswitch_done(priv, true);
168 IWL_ERR(priv, "CSA notif (fail) : channel %d\n",
169 le16_to_cpu(csa->channel));
170 iwl_chswitch_done(priv, false);
176 static int iwlagn_rx_spectrum_measure_notif(struct iwl_priv *priv,
177 struct iwl_rx_cmd_buffer *rxb,
178 struct iwl_device_cmd *cmd)
180 struct iwl_rx_packet *pkt = rxb_addr(rxb);
181 struct iwl_spectrum_notification *report = (void *)pkt->data;
183 if (!report->state) {
185 "Spectrum Measure Notification: Start\n");
189 memcpy(&priv->measure_report, report, sizeof(*report));
190 priv->measurement_status |= MEASUREMENT_READY;
194 static int iwlagn_rx_pm_sleep_notif(struct iwl_priv *priv,
195 struct iwl_rx_cmd_buffer *rxb,
196 struct iwl_device_cmd *cmd)
198 #ifdef CONFIG_IWLWIFI_DEBUG
199 struct iwl_rx_packet *pkt = rxb_addr(rxb);
200 struct iwl_sleep_notification *sleep = (void *)pkt->data;
201 IWL_DEBUG_RX(priv, "sleep mode: %d, src: %d\n",
202 sleep->pm_sleep_mode, sleep->pm_wakeup_src);
207 static int iwlagn_rx_pm_debug_statistics_notif(struct iwl_priv *priv,
208 struct iwl_rx_cmd_buffer *rxb,
209 struct iwl_device_cmd *cmd)
211 struct iwl_rx_packet *pkt = rxb_addr(rxb);
212 u32 __maybe_unused len =
213 le32_to_cpu(pkt->len_n_flags) & FH_RSCSR_FRAME_SIZE_MSK;
214 IWL_DEBUG_RADIO(priv, "Dumping %d bytes of unhandled "
215 "notification for PM_DEBUG_STATISTIC_NOTIFIC:\n", len);
216 iwl_print_hex_dump(priv, IWL_DL_RADIO, pkt->data, len);
220 static int iwlagn_rx_beacon_notif(struct iwl_priv *priv,
221 struct iwl_rx_cmd_buffer *rxb,
222 struct iwl_device_cmd *cmd)
224 struct iwl_rx_packet *pkt = rxb_addr(rxb);
225 struct iwlagn_beacon_notif *beacon = (void *)pkt->data;
226 #ifdef CONFIG_IWLWIFI_DEBUG
227 u16 status = le16_to_cpu(beacon->beacon_notify_hdr.status.status);
228 u8 rate = iwl_hw_get_rate(beacon->beacon_notify_hdr.rate_n_flags);
230 IWL_DEBUG_RX(priv, "beacon status %#x, retries:%d ibssmgr:%d "
231 "tsf:0x%.8x%.8x rate:%d\n",
232 status & TX_STATUS_MSK,
233 beacon->beacon_notify_hdr.failure_frame,
234 le32_to_cpu(beacon->ibss_mgr_status),
235 le32_to_cpu(beacon->high_tsf),
236 le32_to_cpu(beacon->low_tsf), rate);
239 priv->ibss_manager = le32_to_cpu(beacon->ibss_mgr_status);
245 * iwl_good_plcp_health - checks for plcp error.
247 * When the plcp error is exceeding the thresholds, reset the radio
248 * to improve the throughput.
250 static bool iwlagn_good_plcp_health(struct iwl_priv *priv,
251 struct statistics_rx_phy *cur_ofdm,
252 struct statistics_rx_ht_phy *cur_ofdm_ht,
256 int threshold = priv->plcp_delta_threshold;
258 if (threshold == IWL_MAX_PLCP_ERR_THRESHOLD_DISABLE) {
259 IWL_DEBUG_RADIO(priv, "plcp_err check disabled\n");
263 delta = le32_to_cpu(cur_ofdm->plcp_err) -
264 le32_to_cpu(priv->statistics.rx_ofdm.plcp_err) +
265 le32_to_cpu(cur_ofdm_ht->plcp_err) -
266 le32_to_cpu(priv->statistics.rx_ofdm_ht.plcp_err);
268 /* Can be negative if firmware reset statistics */
272 if ((delta * 100 / msecs) > threshold) {
273 IWL_DEBUG_RADIO(priv,
274 "plcp health threshold %u delta %d msecs %u\n",
275 threshold, delta, msecs);
282 int iwl_force_rf_reset(struct iwl_priv *priv, bool external)
284 struct iwl_rf_reset *rf_reset;
286 if (test_bit(STATUS_EXIT_PENDING, &priv->status))
289 if (!iwl_is_any_associated(priv)) {
290 IWL_DEBUG_SCAN(priv, "force reset rejected: not associated\n");
294 rf_reset = &priv->rf_reset;
295 rf_reset->reset_request_count++;
296 if (!external && rf_reset->last_reset_jiffies &&
297 time_after(rf_reset->last_reset_jiffies +
298 IWL_DELAY_NEXT_FORCE_RF_RESET, jiffies)) {
299 IWL_DEBUG_INFO(priv, "RF reset rejected\n");
300 rf_reset->reset_reject_count++;
303 rf_reset->reset_success_count++;
304 rf_reset->last_reset_jiffies = jiffies;
307 * There is no easy and better way to force reset the radio,
308 * the only known method is switching channel which will force to
309 * reset and tune the radio.
310 * Use internal short scan (single channel) operation to should
311 * achieve this objective.
312 * Driver should reset the radio when number of consecutive missed
313 * beacon, or any other uCode error condition detected.
315 IWL_DEBUG_INFO(priv, "perform radio reset.\n");
316 iwl_internal_short_hw_scan(priv);
321 static void iwlagn_recover_from_statistics(struct iwl_priv *priv,
322 struct statistics_rx_phy *cur_ofdm,
323 struct statistics_rx_ht_phy *cur_ofdm_ht,
324 struct statistics_tx *tx,
329 if (test_bit(STATUS_EXIT_PENDING, &priv->status))
332 msecs = jiffies_to_msecs(stamp - priv->rx_statistics_jiffies);
334 /* Only gather statistics and update time stamp when not associated */
335 if (!iwl_is_any_associated(priv))
338 /* Do not check/recover when do not have enough statistics data */
342 if (iwlagn_mod_params.plcp_check &&
343 !iwlagn_good_plcp_health(priv, cur_ofdm, cur_ofdm_ht, msecs))
344 iwl_force_rf_reset(priv, false);
347 /* Calculate noise level, based on measurements during network silence just
348 * before arriving beacon. This measurement can be done only if we know
349 * exactly when to expect beacons, therefore only when we're associated. */
350 static void iwlagn_rx_calc_noise(struct iwl_priv *priv)
352 struct statistics_rx_non_phy *rx_info;
353 int num_active_rx = 0;
354 int total_silence = 0;
355 int bcn_silence_a, bcn_silence_b, bcn_silence_c;
358 rx_info = &priv->statistics.rx_non_phy;
361 le32_to_cpu(rx_info->beacon_silence_rssi_a) & IN_BAND_FILTER;
363 le32_to_cpu(rx_info->beacon_silence_rssi_b) & IN_BAND_FILTER;
365 le32_to_cpu(rx_info->beacon_silence_rssi_c) & IN_BAND_FILTER;
368 total_silence += bcn_silence_a;
372 total_silence += bcn_silence_b;
376 total_silence += bcn_silence_c;
380 /* Average among active antennas */
382 last_rx_noise = (total_silence / num_active_rx) - 107;
384 last_rx_noise = IWL_NOISE_MEAS_NOT_AVAILABLE;
386 IWL_DEBUG_CALIB(priv, "inband silence a %u, b %u, c %u, dBm %d\n",
387 bcn_silence_a, bcn_silence_b, bcn_silence_c,
391 #ifdef CONFIG_IWLWIFI_DEBUGFS
393 * based on the assumption of all statistics counter are in DWORD
394 * FIXME: This function is for debugging, do not deal with
395 * the case of counters roll-over.
397 static void accum_stats(__le32 *prev, __le32 *cur, __le32 *delta,
398 __le32 *max_delta, __le32 *accum, int size)
403 i < size / sizeof(__le32);
404 i++, prev++, cur++, delta++, max_delta++, accum++) {
405 if (le32_to_cpu(*cur) > le32_to_cpu(*prev)) {
406 *delta = cpu_to_le32(
407 le32_to_cpu(*cur) - le32_to_cpu(*prev));
408 le32_add_cpu(accum, le32_to_cpu(*delta));
409 if (le32_to_cpu(*delta) > le32_to_cpu(*max_delta))
416 iwlagn_accumulative_statistics(struct iwl_priv *priv,
417 struct statistics_general_common *common,
418 struct statistics_rx_non_phy *rx_non_phy,
419 struct statistics_rx_phy *rx_ofdm,
420 struct statistics_rx_ht_phy *rx_ofdm_ht,
421 struct statistics_rx_phy *rx_cck,
422 struct statistics_tx *tx,
423 struct statistics_bt_activity *bt_activity)
425 #define ACCUM(_name) \
426 accum_stats((__le32 *)&priv->statistics._name, \
428 (__le32 *)&priv->delta_stats._name, \
429 (__le32 *)&priv->max_delta_stats._name, \
430 (__le32 *)&priv->accum_stats._name, \
445 iwlagn_accumulative_statistics(struct iwl_priv *priv,
446 struct statistics_general_common *common,
447 struct statistics_rx_non_phy *rx_non_phy,
448 struct statistics_rx_phy *rx_ofdm,
449 struct statistics_rx_ht_phy *rx_ofdm_ht,
450 struct statistics_rx_phy *rx_cck,
451 struct statistics_tx *tx,
452 struct statistics_bt_activity *bt_activity)
457 static int iwlagn_rx_statistics(struct iwl_priv *priv,
458 struct iwl_rx_cmd_buffer *rxb,
459 struct iwl_device_cmd *cmd)
461 unsigned long stamp = jiffies;
462 const int reg_recalib_period = 60;
464 struct iwl_rx_packet *pkt = rxb_addr(rxb);
465 u32 len = le32_to_cpu(pkt->len_n_flags) & FH_RSCSR_FRAME_SIZE_MSK;
467 struct statistics_general_common *common;
468 struct statistics_rx_non_phy *rx_non_phy;
469 struct statistics_rx_phy *rx_ofdm;
470 struct statistics_rx_ht_phy *rx_ofdm_ht;
471 struct statistics_rx_phy *rx_cck;
472 struct statistics_tx *tx;
473 struct statistics_bt_activity *bt_activity;
475 len -= sizeof(struct iwl_cmd_header); /* skip header */
477 IWL_DEBUG_RX(priv, "Statistics notification received (%d bytes).\n",
480 spin_lock(&priv->statistics.lock);
482 if (len == sizeof(struct iwl_bt_notif_statistics)) {
483 struct iwl_bt_notif_statistics *stats;
484 stats = (void *)&pkt->data;
486 common = &stats->general.common;
487 rx_non_phy = &stats->rx.general.common;
488 rx_ofdm = &stats->rx.ofdm;
489 rx_ofdm_ht = &stats->rx.ofdm_ht;
490 rx_cck = &stats->rx.cck;
492 bt_activity = &stats->general.activity;
494 #ifdef CONFIG_IWLWIFI_DEBUGFS
495 /* handle this exception directly */
496 priv->statistics.num_bt_kills = stats->rx.general.num_bt_kills;
497 le32_add_cpu(&priv->statistics.accum_num_bt_kills,
498 le32_to_cpu(stats->rx.general.num_bt_kills));
500 } else if (len == sizeof(struct iwl_notif_statistics)) {
501 struct iwl_notif_statistics *stats;
502 stats = (void *)&pkt->data;
504 common = &stats->general.common;
505 rx_non_phy = &stats->rx.general;
506 rx_ofdm = &stats->rx.ofdm;
507 rx_ofdm_ht = &stats->rx.ofdm_ht;
508 rx_cck = &stats->rx.cck;
512 WARN_ONCE(1, "len %d doesn't match BT (%zu) or normal (%zu)\n",
513 len, sizeof(struct iwl_bt_notif_statistics),
514 sizeof(struct iwl_notif_statistics));
515 spin_unlock(&priv->statistics.lock);
519 change = common->temperature != priv->statistics.common.temperature ||
520 (*flag & STATISTICS_REPLY_FLG_HT40_MODE_MSK) !=
521 (priv->statistics.flag & STATISTICS_REPLY_FLG_HT40_MODE_MSK);
523 iwlagn_accumulative_statistics(priv, common, rx_non_phy, rx_ofdm,
524 rx_ofdm_ht, rx_cck, tx, bt_activity);
526 iwlagn_recover_from_statistics(priv, rx_ofdm, rx_ofdm_ht, tx, stamp);
528 priv->statistics.flag = *flag;
529 memcpy(&priv->statistics.common, common, sizeof(*common));
530 memcpy(&priv->statistics.rx_non_phy, rx_non_phy, sizeof(*rx_non_phy));
531 memcpy(&priv->statistics.rx_ofdm, rx_ofdm, sizeof(*rx_ofdm));
532 memcpy(&priv->statistics.rx_ofdm_ht, rx_ofdm_ht, sizeof(*rx_ofdm_ht));
533 memcpy(&priv->statistics.rx_cck, rx_cck, sizeof(*rx_cck));
534 memcpy(&priv->statistics.tx, tx, sizeof(*tx));
535 #ifdef CONFIG_IWLWIFI_DEBUGFS
537 memcpy(&priv->statistics.bt_activity, bt_activity,
538 sizeof(*bt_activity));
541 priv->rx_statistics_jiffies = stamp;
543 set_bit(STATUS_STATISTICS, &priv->status);
545 /* Reschedule the statistics timer to occur in
546 * reg_recalib_period seconds to ensure we get a
547 * thermal update even if the uCode doesn't give
549 mod_timer(&priv->statistics_periodic, jiffies +
550 msecs_to_jiffies(reg_recalib_period * 1000));
552 if (unlikely(!test_bit(STATUS_SCANNING, &priv->status)) &&
553 (pkt->hdr.cmd == STATISTICS_NOTIFICATION)) {
554 iwlagn_rx_calc_noise(priv);
555 queue_work(priv->workqueue, &priv->run_time_calib_work);
557 if (priv->lib->temperature && change)
558 priv->lib->temperature(priv);
560 spin_unlock(&priv->statistics.lock);
565 static int iwlagn_rx_reply_statistics(struct iwl_priv *priv,
566 struct iwl_rx_cmd_buffer *rxb,
567 struct iwl_device_cmd *cmd)
569 struct iwl_rx_packet *pkt = rxb_addr(rxb);
570 struct iwl_notif_statistics *stats = (void *)pkt->data;
572 if (le32_to_cpu(stats->flag) & UCODE_STATISTICS_CLEAR_MSK) {
573 #ifdef CONFIG_IWLWIFI_DEBUGFS
574 memset(&priv->accum_stats, 0,
575 sizeof(priv->accum_stats));
576 memset(&priv->delta_stats, 0,
577 sizeof(priv->delta_stats));
578 memset(&priv->max_delta_stats, 0,
579 sizeof(priv->max_delta_stats));
581 IWL_DEBUG_RX(priv, "Statistics have been cleared\n");
583 iwlagn_rx_statistics(priv, rxb, cmd);
587 /* Handle notification from uCode that card's power state is changing
588 * due to software, hardware, or critical temperature RFKILL */
589 static int iwlagn_rx_card_state_notif(struct iwl_priv *priv,
590 struct iwl_rx_cmd_buffer *rxb,
591 struct iwl_device_cmd *cmd)
593 struct iwl_rx_packet *pkt = rxb_addr(rxb);
594 struct iwl_card_state_notif *card_state_notif = (void *)pkt->data;
595 u32 flags = le32_to_cpu(card_state_notif->flags);
596 unsigned long status = priv->status;
598 IWL_DEBUG_RF_KILL(priv, "Card state received: HW:%s SW:%s CT:%s\n",
599 (flags & HW_CARD_DISABLED) ? "Kill" : "On",
600 (flags & SW_CARD_DISABLED) ? "Kill" : "On",
601 (flags & CT_CARD_DISABLED) ?
602 "Reached" : "Not reached");
604 if (flags & (SW_CARD_DISABLED | HW_CARD_DISABLED |
607 iwl_write32(priv->trans, CSR_UCODE_DRV_GP1_SET,
608 CSR_UCODE_DRV_GP1_BIT_CMD_BLOCKED);
610 iwl_write_direct32(priv->trans, HBUS_TARG_MBX_C,
611 HBUS_TARG_MBX_C_REG_BIT_CMD_BLOCKED);
613 if (!(flags & RXON_CARD_DISABLED)) {
614 iwl_write32(priv->trans, CSR_UCODE_DRV_GP1_CLR,
615 CSR_UCODE_DRV_GP1_BIT_CMD_BLOCKED);
616 iwl_write_direct32(priv->trans, HBUS_TARG_MBX_C,
617 HBUS_TARG_MBX_C_REG_BIT_CMD_BLOCKED);
619 if (flags & CT_CARD_DISABLED)
620 iwl_tt_enter_ct_kill(priv);
622 if (!(flags & CT_CARD_DISABLED))
623 iwl_tt_exit_ct_kill(priv);
625 if (flags & HW_CARD_DISABLED)
626 set_bit(STATUS_RF_KILL_HW, &priv->status);
628 clear_bit(STATUS_RF_KILL_HW, &priv->status);
631 if (!(flags & RXON_CARD_DISABLED))
632 iwl_scan_cancel(priv);
634 if ((test_bit(STATUS_RF_KILL_HW, &status) !=
635 test_bit(STATUS_RF_KILL_HW, &priv->status)))
636 wiphy_rfkill_set_hw_state(priv->hw->wiphy,
637 test_bit(STATUS_RF_KILL_HW, &priv->status));
639 wake_up(&priv->trans->wait_command_queue);
643 static int iwlagn_rx_missed_beacon_notif(struct iwl_priv *priv,
644 struct iwl_rx_cmd_buffer *rxb,
645 struct iwl_device_cmd *cmd)
648 struct iwl_rx_packet *pkt = rxb_addr(rxb);
649 struct iwl_missed_beacon_notif *missed_beacon = (void *)pkt->data;
651 if (le32_to_cpu(missed_beacon->consecutive_missed_beacons) >
652 priv->missed_beacon_threshold) {
653 IWL_DEBUG_CALIB(priv,
654 "missed bcn cnsq %d totl %d rcd %d expctd %d\n",
655 le32_to_cpu(missed_beacon->consecutive_missed_beacons),
656 le32_to_cpu(missed_beacon->total_missed_becons),
657 le32_to_cpu(missed_beacon->num_recvd_beacons),
658 le32_to_cpu(missed_beacon->num_expected_beacons));
659 if (!test_bit(STATUS_SCANNING, &priv->status))
660 iwl_init_sensitivity(priv);
665 /* Cache phy data (Rx signal strength, etc) for HT frame (REPLY_RX_PHY_CMD).
666 * This will be used later in iwl_rx_reply_rx() for REPLY_RX_MPDU_CMD. */
667 static int iwlagn_rx_reply_rx_phy(struct iwl_priv *priv,
668 struct iwl_rx_cmd_buffer *rxb,
669 struct iwl_device_cmd *cmd)
671 struct iwl_rx_packet *pkt = rxb_addr(rxb);
673 priv->last_phy_res_valid = true;
674 memcpy(&priv->last_phy_res, pkt->data,
675 sizeof(struct iwl_rx_phy_res));
680 * returns non-zero if packet should be dropped
682 static int iwlagn_set_decrypted_flag(struct iwl_priv *priv,
683 struct ieee80211_hdr *hdr,
685 struct ieee80211_rx_status *stats)
687 u16 fc = le16_to_cpu(hdr->frame_control);
690 * All contexts have the same setting here due to it being
691 * a module parameter, so OK to check any context.
693 if (priv->contexts[IWL_RXON_CTX_BSS].active.filter_flags &
694 RXON_FILTER_DIS_DECRYPT_MSK)
697 if (!(fc & IEEE80211_FCTL_PROTECTED))
700 IWL_DEBUG_RX(priv, "decrypt_res:0x%x\n", decrypt_res);
701 switch (decrypt_res & RX_RES_STATUS_SEC_TYPE_MSK) {
702 case RX_RES_STATUS_SEC_TYPE_TKIP:
703 /* The uCode has got a bad phase 1 Key, pushes the packet.
704 * Decryption will be done in SW. */
705 if ((decrypt_res & RX_RES_STATUS_DECRYPT_TYPE_MSK) ==
706 RX_RES_STATUS_BAD_KEY_TTAK)
709 case RX_RES_STATUS_SEC_TYPE_WEP:
710 if ((decrypt_res & RX_RES_STATUS_DECRYPT_TYPE_MSK) ==
711 RX_RES_STATUS_BAD_ICV_MIC) {
712 /* bad ICV, the packet is destroyed since the
713 * decryption is inplace, drop it */
714 IWL_DEBUG_RX(priv, "Packet destroyed\n");
717 case RX_RES_STATUS_SEC_TYPE_CCMP:
718 if ((decrypt_res & RX_RES_STATUS_DECRYPT_TYPE_MSK) ==
719 RX_RES_STATUS_DECRYPT_OK) {
720 IWL_DEBUG_RX(priv, "hw decrypt successfully!!!\n");
721 stats->flag |= RX_FLAG_DECRYPTED;
731 static void iwlagn_pass_packet_to_mac80211(struct iwl_priv *priv,
732 struct ieee80211_hdr *hdr,
735 struct iwl_rx_cmd_buffer *rxb,
736 struct ieee80211_rx_status *stats)
739 __le16 fc = hdr->frame_control;
740 struct iwl_rxon_context *ctx;
744 /* We only process data packets if the interface is open */
745 if (unlikely(!priv->is_open)) {
746 IWL_DEBUG_DROP_LIMIT(priv,
747 "Dropping packet while interface is not open.\n");
751 /* In case of HW accelerated crypto and bad decryption, drop */
752 if (!iwlagn_mod_params.sw_crypto &&
753 iwlagn_set_decrypted_flag(priv, hdr, ampdu_status, stats))
756 skb = dev_alloc_skb(128);
758 IWL_ERR(priv, "dev_alloc_skb failed\n");
762 offset = (void *)hdr - rxb_addr(rxb) + rxb_offset(rxb);
763 p = rxb_steal_page(rxb);
764 skb_add_rx_frag(skb, 0, p, offset, len, len);
766 iwl_update_stats(priv, false, fc, len);
769 * Wake any queues that were stopped due to a passive channel tx
770 * failure. This can happen because the regulatory enforcement in
771 * the device waits for a beacon before allowing transmission,
772 * sometimes even after already having transmitted frames for the
773 * association because the new RXON may reset the information.
775 if (unlikely(ieee80211_is_beacon(fc) && priv->passive_no_rx)) {
776 for_each_context(priv, ctx) {
777 if (compare_ether_addr(hdr->addr3,
778 ctx->active.bssid_addr))
780 iwlagn_lift_passive_no_rx(priv);
784 memcpy(IEEE80211_SKB_RXCB(skb), stats, sizeof(*stats));
786 ieee80211_rx(priv->hw, skb);
789 static u32 iwlagn_translate_rx_status(struct iwl_priv *priv, u32 decrypt_in)
793 if ((decrypt_in & RX_RES_STATUS_STATION_FOUND) ==
794 RX_RES_STATUS_STATION_FOUND)
795 decrypt_out |= (RX_RES_STATUS_STATION_FOUND |
796 RX_RES_STATUS_NO_STATION_INFO_MISMATCH);
798 decrypt_out |= (decrypt_in & RX_RES_STATUS_SEC_TYPE_MSK);
800 /* packet was not encrypted */
801 if ((decrypt_in & RX_RES_STATUS_SEC_TYPE_MSK) ==
802 RX_RES_STATUS_SEC_TYPE_NONE)
805 /* packet was encrypted with unknown alg */
806 if ((decrypt_in & RX_RES_STATUS_SEC_TYPE_MSK) ==
807 RX_RES_STATUS_SEC_TYPE_ERR)
810 /* decryption was not done in HW */
811 if ((decrypt_in & RX_MPDU_RES_STATUS_DEC_DONE_MSK) !=
812 RX_MPDU_RES_STATUS_DEC_DONE_MSK)
815 switch (decrypt_in & RX_RES_STATUS_SEC_TYPE_MSK) {
817 case RX_RES_STATUS_SEC_TYPE_CCMP:
818 /* alg is CCM: check MIC only */
819 if (!(decrypt_in & RX_MPDU_RES_STATUS_MIC_OK))
821 decrypt_out |= RX_RES_STATUS_BAD_ICV_MIC;
823 decrypt_out |= RX_RES_STATUS_DECRYPT_OK;
827 case RX_RES_STATUS_SEC_TYPE_TKIP:
828 if (!(decrypt_in & RX_MPDU_RES_STATUS_TTAK_OK)) {
830 decrypt_out |= RX_RES_STATUS_BAD_KEY_TTAK;
833 /* fall through if TTAK OK */
835 if (!(decrypt_in & RX_MPDU_RES_STATUS_ICV_OK))
836 decrypt_out |= RX_RES_STATUS_BAD_ICV_MIC;
838 decrypt_out |= RX_RES_STATUS_DECRYPT_OK;
842 IWL_DEBUG_RX(priv, "decrypt_in:0x%x decrypt_out = 0x%x\n",
843 decrypt_in, decrypt_out);
848 /* Calc max signal level (dBm) among 3 possible receivers */
849 static int iwlagn_calc_rssi(struct iwl_priv *priv,
850 struct iwl_rx_phy_res *rx_resp)
852 /* data from PHY/DSP regarding signal strength, etc.,
853 * contents are always there, not configurable by host
855 struct iwlagn_non_cfg_phy *ncphy =
856 (struct iwlagn_non_cfg_phy *)rx_resp->non_cfg_phy_buf;
857 u32 val, rssi_a, rssi_b, rssi_c, max_rssi;
860 val = le32_to_cpu(ncphy->non_cfg_phy[IWLAGN_RX_RES_AGC_IDX]);
861 agc = (val & IWLAGN_OFDM_AGC_MSK) >> IWLAGN_OFDM_AGC_BIT_POS;
863 /* Find max rssi among 3 possible receivers.
864 * These values are measured by the digital signal processor (DSP).
865 * They should stay fairly constant even as the signal strength varies,
866 * if the radio's automatic gain control (AGC) is working right.
867 * AGC value (see below) will provide the "interesting" info.
869 val = le32_to_cpu(ncphy->non_cfg_phy[IWLAGN_RX_RES_RSSI_AB_IDX]);
870 rssi_a = (val & IWLAGN_OFDM_RSSI_INBAND_A_BITMSK) >>
871 IWLAGN_OFDM_RSSI_A_BIT_POS;
872 rssi_b = (val & IWLAGN_OFDM_RSSI_INBAND_B_BITMSK) >>
873 IWLAGN_OFDM_RSSI_B_BIT_POS;
874 val = le32_to_cpu(ncphy->non_cfg_phy[IWLAGN_RX_RES_RSSI_C_IDX]);
875 rssi_c = (val & IWLAGN_OFDM_RSSI_INBAND_C_BITMSK) >>
876 IWLAGN_OFDM_RSSI_C_BIT_POS;
878 max_rssi = max_t(u32, rssi_a, rssi_b);
879 max_rssi = max_t(u32, max_rssi, rssi_c);
881 IWL_DEBUG_STATS(priv, "Rssi In A %d B %d C %d Max %d AGC dB %d\n",
882 rssi_a, rssi_b, rssi_c, max_rssi, agc);
884 /* dBm = max_rssi dB - agc dB - constant.
885 * Higher AGC (higher radio gain) means lower signal. */
886 return max_rssi - agc - IWLAGN_RSSI_OFFSET;
889 /* Called for REPLY_RX (legacy ABG frames), or
890 * REPLY_RX_MPDU_CMD (HT high-throughput N frames). */
891 static int iwlagn_rx_reply_rx(struct iwl_priv *priv,
892 struct iwl_rx_cmd_buffer *rxb,
893 struct iwl_device_cmd *cmd)
895 struct ieee80211_hdr *header;
896 struct ieee80211_rx_status rx_status;
897 struct iwl_rx_packet *pkt = rxb_addr(rxb);
898 struct iwl_rx_phy_res *phy_res;
899 __le32 rx_pkt_status;
900 struct iwl_rx_mpdu_res_start *amsdu;
906 * REPLY_RX and REPLY_RX_MPDU_CMD are handled differently.
907 * REPLY_RX: physical layer info is in this buffer
908 * REPLY_RX_MPDU_CMD: physical layer info was sent in separate
909 * command and cached in priv->last_phy_res
911 * Here we set up local variables depending on which command is
914 if (pkt->hdr.cmd == REPLY_RX) {
915 phy_res = (struct iwl_rx_phy_res *)pkt->data;
916 header = (struct ieee80211_hdr *)(pkt->data + sizeof(*phy_res)
917 + phy_res->cfg_phy_cnt);
919 len = le16_to_cpu(phy_res->byte_count);
920 rx_pkt_status = *(__le32 *)(pkt->data + sizeof(*phy_res) +
921 phy_res->cfg_phy_cnt + len);
922 ampdu_status = le32_to_cpu(rx_pkt_status);
924 if (!priv->last_phy_res_valid) {
925 IWL_ERR(priv, "MPDU frame without cached PHY data\n");
928 phy_res = &priv->last_phy_res;
929 amsdu = (struct iwl_rx_mpdu_res_start *)pkt->data;
930 header = (struct ieee80211_hdr *)(pkt->data + sizeof(*amsdu));
931 len = le16_to_cpu(amsdu->byte_count);
932 rx_pkt_status = *(__le32 *)(pkt->data + sizeof(*amsdu) + len);
933 ampdu_status = iwlagn_translate_rx_status(priv,
934 le32_to_cpu(rx_pkt_status));
937 if ((unlikely(phy_res->cfg_phy_cnt > 20))) {
938 IWL_DEBUG_DROP(priv, "dsp size out of range [0,20]: %d\n",
939 phy_res->cfg_phy_cnt);
943 if (!(rx_pkt_status & RX_RES_STATUS_NO_CRC32_ERROR) ||
944 !(rx_pkt_status & RX_RES_STATUS_NO_RXE_OVERFLOW)) {
945 IWL_DEBUG_RX(priv, "Bad CRC or FIFO: 0x%08X.\n",
946 le32_to_cpu(rx_pkt_status));
950 /* This will be used in several places later */
951 rate_n_flags = le32_to_cpu(phy_res->rate_n_flags);
953 /* rx_status carries information about the packet to mac80211 */
954 rx_status.mactime = le64_to_cpu(phy_res->timestamp);
955 rx_status.band = (phy_res->phy_flags & RX_RES_PHY_FLAGS_BAND_24_MSK) ?
956 IEEE80211_BAND_2GHZ : IEEE80211_BAND_5GHZ;
958 ieee80211_channel_to_frequency(le16_to_cpu(phy_res->channel),
961 iwlagn_hwrate_to_mac80211_idx(rate_n_flags, rx_status.band);
964 /* TSF isn't reliable. In order to allow smooth user experience,
965 * this W/A doesn't propagate it to the mac80211 */
966 /*rx_status.flag |= RX_FLAG_MACTIME_MPDU;*/
968 priv->ucode_beacon_time = le32_to_cpu(phy_res->beacon_time_stamp);
970 /* Find max signal strength (dBm) among 3 antenna/receiver chains */
971 rx_status.signal = iwlagn_calc_rssi(priv, phy_res);
973 iwl_dbg_log_rx_data_frame(priv, len, header);
974 IWL_DEBUG_STATS_LIMIT(priv, "Rssi %d, TSF %llu\n",
975 rx_status.signal, (unsigned long long)rx_status.mactime);
980 * It seems that the antenna field in the phy flags value
981 * is actually a bit field. This is undefined by radiotap,
982 * it wants an actual antenna number but I always get "7"
983 * for most legacy frames I receive indicating that the
984 * same frame was received on all three RX chains.
986 * I think this field should be removed in favor of a
987 * new 802.11n radiotap field "RX chains" that is defined
991 (le16_to_cpu(phy_res->phy_flags) & RX_RES_PHY_FLAGS_ANTENNA_MSK)
992 >> RX_RES_PHY_FLAGS_ANTENNA_POS;
994 /* set the preamble flag if appropriate */
995 if (phy_res->phy_flags & RX_RES_PHY_FLAGS_SHORT_PREAMBLE_MSK)
996 rx_status.flag |= RX_FLAG_SHORTPRE;
998 /* Set up the HT phy flags */
999 if (rate_n_flags & RATE_MCS_HT_MSK)
1000 rx_status.flag |= RX_FLAG_HT;
1001 if (rate_n_flags & RATE_MCS_HT40_MSK)
1002 rx_status.flag |= RX_FLAG_40MHZ;
1003 if (rate_n_flags & RATE_MCS_SGI_MSK)
1004 rx_status.flag |= RX_FLAG_SHORT_GI;
1006 iwlagn_pass_packet_to_mac80211(priv, header, len, ampdu_status,
1011 static int iwlagn_rx_noa_notification(struct iwl_priv *priv,
1012 struct iwl_rx_cmd_buffer *rxb,
1013 struct iwl_device_cmd *cmd)
1015 struct iwl_wipan_noa_data *new_data, *old_data;
1016 struct iwl_rx_packet *pkt = rxb_addr(rxb);
1017 struct iwl_wipan_noa_notification *noa_notif = (void *)pkt->data;
1019 /* no condition -- we're in softirq */
1020 old_data = rcu_dereference_protected(priv->noa_data, true);
1022 if (noa_notif->noa_active) {
1023 u32 len = le16_to_cpu(noa_notif->noa_attribute.length);
1026 /* EID, len, OUI, subtype */
1027 len += 1 + 1 + 3 + 1;
1028 /* P2P id, P2P length */
1032 new_data = kmalloc(sizeof(*new_data) + len, GFP_ATOMIC);
1034 new_data->length = len;
1035 new_data->data[0] = WLAN_EID_VENDOR_SPECIFIC;
1036 new_data->data[1] = len - 2; /* not counting EID, len */
1037 new_data->data[2] = (WLAN_OUI_WFA >> 16) & 0xff;
1038 new_data->data[3] = (WLAN_OUI_WFA >> 8) & 0xff;
1039 new_data->data[4] = (WLAN_OUI_WFA >> 0) & 0xff;
1040 new_data->data[5] = WLAN_OUI_TYPE_WFA_P2P;
1041 memcpy(&new_data->data[6], &noa_notif->noa_attribute,
1047 rcu_assign_pointer(priv->noa_data, new_data);
1050 kfree_rcu(old_data, rcu_head);
1056 * iwl_setup_rx_handlers - Initialize Rx handler callbacks
1058 * Setup the RX handlers for each of the reply types sent from the uCode
1061 void iwl_setup_rx_handlers(struct iwl_priv *priv)
1063 int (**handlers)(struct iwl_priv *priv, struct iwl_rx_cmd_buffer *rxb,
1064 struct iwl_device_cmd *cmd);
1066 handlers = priv->rx_handlers;
1068 handlers[REPLY_ERROR] = iwlagn_rx_reply_error;
1069 handlers[CHANNEL_SWITCH_NOTIFICATION] = iwlagn_rx_csa;
1070 handlers[SPECTRUM_MEASURE_NOTIFICATION] =
1071 iwlagn_rx_spectrum_measure_notif;
1072 handlers[PM_SLEEP_NOTIFICATION] = iwlagn_rx_pm_sleep_notif;
1073 handlers[PM_DEBUG_STATISTIC_NOTIFIC] =
1074 iwlagn_rx_pm_debug_statistics_notif;
1075 handlers[BEACON_NOTIFICATION] = iwlagn_rx_beacon_notif;
1076 handlers[REPLY_ADD_STA] = iwl_add_sta_callback;
1078 handlers[REPLY_WIPAN_NOA_NOTIFICATION] = iwlagn_rx_noa_notification;
1081 * The same handler is used for both the REPLY to a discrete
1082 * statistics request from the host as well as for the periodic
1083 * statistics notifications (after received beacons) from the uCode.
1085 handlers[REPLY_STATISTICS_CMD] = iwlagn_rx_reply_statistics;
1086 handlers[STATISTICS_NOTIFICATION] = iwlagn_rx_statistics;
1088 iwl_setup_rx_scan_handlers(priv);
1090 handlers[CARD_STATE_NOTIFICATION] = iwlagn_rx_card_state_notif;
1091 handlers[MISSED_BEACONS_NOTIFICATION] =
1092 iwlagn_rx_missed_beacon_notif;
1095 handlers[REPLY_RX_PHY_CMD] = iwlagn_rx_reply_rx_phy;
1096 handlers[REPLY_RX_MPDU_CMD] = iwlagn_rx_reply_rx;
1099 handlers[REPLY_COMPRESSED_BA] =
1100 iwlagn_rx_reply_compressed_ba;
1102 priv->rx_handlers[REPLY_TX] = iwlagn_rx_reply_tx;
1104 /* set up notification wait support */
1105 iwl_notification_wait_init(&priv->notif_wait);
1107 /* Set up BT Rx handlers */
1108 if (priv->cfg->bt_params)
1109 iwlagn_bt_rx_handler_setup(priv);
1112 int iwl_rx_dispatch(struct iwl_op_mode *op_mode, struct iwl_rx_cmd_buffer *rxb,
1113 struct iwl_device_cmd *cmd)
1115 struct iwl_rx_packet *pkt = rxb_addr(rxb);
1116 struct iwl_priv *priv = IWL_OP_MODE_GET_DVM(op_mode);
1117 void (*pre_rx_handler)(struct iwl_priv *,
1118 struct iwl_rx_cmd_buffer *);
1122 * Do the notification wait before RX handlers so
1123 * even if the RX handler consumes the RXB we have
1124 * access to it in the notification wait entry.
1126 iwl_notification_wait_notify(&priv->notif_wait, pkt);
1128 /* RX data may be forwarded to userspace (using pre_rx_handler) in one
1129 * of two cases: the first, that the user owns the uCode through
1130 * testmode - in such case the pre_rx_handler is set and no further
1131 * processing takes place. The other case is when the user want to
1132 * monitor the rx w/o affecting the regular flow - the pre_rx_handler
1133 * will be set but the ownership flag != IWL_OWNERSHIP_TM and the flow
1135 * We need to use ACCESS_ONCE to prevent a case where the handler
1136 * changes between the check and the call.
1138 pre_rx_handler = ACCESS_ONCE(priv->pre_rx_handler);
1140 pre_rx_handler(priv, rxb);
1141 if (priv->ucode_owner != IWL_OWNERSHIP_TM) {
1142 /* Based on type of command response or notification,
1143 * handle those that need handling via function in
1144 * rx_handlers table. See iwl_setup_rx_handlers() */
1145 if (priv->rx_handlers[pkt->hdr.cmd]) {
1146 priv->rx_handlers_stats[pkt->hdr.cmd]++;
1147 err = priv->rx_handlers[pkt->hdr.cmd] (priv, rxb, cmd);
1149 /* No handling needed */
1150 IWL_DEBUG_RX(priv, "No handler needed for %s, 0x%02x\n",
1151 iwl_dvm_get_cmd_string(pkt->hdr.cmd),
projects / ~andy / linux / blob