3 Broadcom B43 wireless driver
5 Copyright (c) 2005 Martin Langer <martin-langer@gmx.de>
6 Copyright (c) 2005 Stefano Brivio <stefano.brivio@polimi.it>
7 Copyright (c) 2005-2009 Michael Buesch <m@bues.ch>
8 Copyright (c) 2005 Danny van Dyk <kugelfang@gentoo.org>
9 Copyright (c) 2005 Andreas Jaggi <andreas.jaggi@waterwave.ch>
10 Copyright (c) 2010-2011 Rafał Miłecki <zajec5@gmail.com>
13 Copyright (c) 2009 Albert Herranz <albert_herranz@yahoo.es>
15 Some parts of the code in this file are derived from the ipw2200
16 driver Copyright(c) 2003 - 2004 Intel Corporation.
18 This program is free software; you can redistribute it and/or modify
19 it under the terms of the GNU General Public License as published by
20 the Free Software Foundation; either version 2 of the License, or
21 (at your option) any later version.
23 This program is distributed in the hope that it will be useful,
24 but WITHOUT ANY WARRANTY; without even the implied warranty of
25 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
26 GNU General Public License for more details.
28 You should have received a copy of the GNU General Public License
29 along with this program; see the file COPYING. If not, write to
30 the Free Software Foundation, Inc., 51 Franklin Steet, Fifth Floor,
31 Boston, MA 02110-1301, USA.
35 #include <linux/delay.h>
36 #include <linux/init.h>
37 #include <linux/module.h>
38 #include <linux/if_arp.h>
39 #include <linux/etherdevice.h>
40 #include <linux/firmware.h>
41 #include <linux/workqueue.h>
42 #include <linux/skbuff.h>
44 #include <linux/dma-mapping.h>
45 #include <linux/slab.h>
46 #include <asm/unaligned.h>
51 #include "phy_common.h"
60 #include <linux/mmc/sdio_func.h>
62 MODULE_DESCRIPTION("Broadcom B43 wireless driver");
63 MODULE_AUTHOR("Martin Langer");
64 MODULE_AUTHOR("Stefano Brivio");
65 MODULE_AUTHOR("Michael Buesch");
66 MODULE_AUTHOR("Gábor Stefanik");
67 MODULE_AUTHOR("Rafał Miłecki");
68 MODULE_LICENSE("GPL");
70 MODULE_FIRMWARE("b43/ucode11.fw");
71 MODULE_FIRMWARE("b43/ucode13.fw");
72 MODULE_FIRMWARE("b43/ucode14.fw");
73 MODULE_FIRMWARE("b43/ucode15.fw");
74 MODULE_FIRMWARE("b43/ucode16_lp.fw");
75 MODULE_FIRMWARE("b43/ucode16_mimo.fw");
76 MODULE_FIRMWARE("b43/ucode24_lcn.fw");
77 MODULE_FIRMWARE("b43/ucode25_lcn.fw");
78 MODULE_FIRMWARE("b43/ucode25_mimo.fw");
79 MODULE_FIRMWARE("b43/ucode26_mimo.fw");
80 MODULE_FIRMWARE("b43/ucode29_mimo.fw");
81 MODULE_FIRMWARE("b43/ucode33_lcn40.fw");
82 MODULE_FIRMWARE("b43/ucode30_mimo.fw");
83 MODULE_FIRMWARE("b43/ucode5.fw");
84 MODULE_FIRMWARE("b43/ucode40.fw");
85 MODULE_FIRMWARE("b43/ucode42.fw");
86 MODULE_FIRMWARE("b43/ucode9.fw");
88 static int modparam_bad_frames_preempt;
89 module_param_named(bad_frames_preempt, modparam_bad_frames_preempt, int, 0444);
90 MODULE_PARM_DESC(bad_frames_preempt,
91 "enable(1) / disable(0) Bad Frames Preemption");
93 static char modparam_fwpostfix[16];
94 module_param_string(fwpostfix, modparam_fwpostfix, 16, 0444);
95 MODULE_PARM_DESC(fwpostfix, "Postfix for the .fw files to load.");
97 static int modparam_hwpctl;
98 module_param_named(hwpctl, modparam_hwpctl, int, 0444);
99 MODULE_PARM_DESC(hwpctl, "Enable hardware-side power control (default off)");
101 static int modparam_nohwcrypt;
102 module_param_named(nohwcrypt, modparam_nohwcrypt, int, 0444);
103 MODULE_PARM_DESC(nohwcrypt, "Disable hardware encryption.");
105 static int modparam_hwtkip;
106 module_param_named(hwtkip, modparam_hwtkip, int, 0444);
107 MODULE_PARM_DESC(hwtkip, "Enable hardware tkip.");
109 static int modparam_qos = 1;
110 module_param_named(qos, modparam_qos, int, 0444);
111 MODULE_PARM_DESC(qos, "Enable QOS support (default on)");
113 static int modparam_btcoex = 1;
114 module_param_named(btcoex, modparam_btcoex, int, 0444);
115 MODULE_PARM_DESC(btcoex, "Enable Bluetooth coexistence (default on)");
117 int b43_modparam_verbose = B43_VERBOSITY_DEFAULT;
118 module_param_named(verbose, b43_modparam_verbose, int, 0644);
119 MODULE_PARM_DESC(verbose, "Log message verbosity: 0=error, 1=warn, 2=info(default), 3=debug");
121 static int b43_modparam_pio = 0;
122 module_param_named(pio, b43_modparam_pio, int, 0644);
123 MODULE_PARM_DESC(pio, "Use PIO accesses by default: 0=DMA, 1=PIO");
125 static int modparam_allhwsupport = !IS_ENABLED(CONFIG_BRCMSMAC);
126 module_param_named(allhwsupport, modparam_allhwsupport, int, 0444);
127 MODULE_PARM_DESC(allhwsupport, "Enable support for all hardware (even it if overlaps with the brcmsmac driver)");
129 #ifdef CONFIG_B43_BCMA
130 static const struct bcma_device_id b43_bcma_tbl[] = {
131 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x11, BCMA_ANY_CLASS),
132 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x15, BCMA_ANY_CLASS),
133 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x17, BCMA_ANY_CLASS),
134 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x18, BCMA_ANY_CLASS),
135 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x1C, BCMA_ANY_CLASS),
136 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x1D, BCMA_ANY_CLASS),
137 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x1E, BCMA_ANY_CLASS),
138 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x28, BCMA_ANY_CLASS),
139 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x2A, BCMA_ANY_CLASS),
142 MODULE_DEVICE_TABLE(bcma, b43_bcma_tbl);
145 #ifdef CONFIG_B43_SSB
146 static const struct ssb_device_id b43_ssb_tbl[] = {
147 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 5),
148 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 6),
149 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 7),
150 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 9),
151 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 10),
152 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 11),
153 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 12),
154 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 13),
155 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 15),
156 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 16),
159 MODULE_DEVICE_TABLE(ssb, b43_ssb_tbl);
162 /* Channel and ratetables are shared for all devices.
163 * They can't be const, because ieee80211 puts some precalculated
164 * data in there. This data is the same for all devices, so we don't
165 * get concurrency issues */
166 #define RATETAB_ENT(_rateid, _flags) \
168 .bitrate = B43_RATE_TO_BASE100KBPS(_rateid), \
169 .hw_value = (_rateid), \
174 * NOTE: When changing this, sync with xmit.c's
175 * b43_plcp_get_bitrate_idx_* functions!
177 static struct ieee80211_rate __b43_ratetable[] = {
178 RATETAB_ENT(B43_CCK_RATE_1MB, 0),
179 RATETAB_ENT(B43_CCK_RATE_2MB, IEEE80211_RATE_SHORT_PREAMBLE),
180 RATETAB_ENT(B43_CCK_RATE_5MB, IEEE80211_RATE_SHORT_PREAMBLE),
181 RATETAB_ENT(B43_CCK_RATE_11MB, IEEE80211_RATE_SHORT_PREAMBLE),
182 RATETAB_ENT(B43_OFDM_RATE_6MB, 0),
183 RATETAB_ENT(B43_OFDM_RATE_9MB, 0),
184 RATETAB_ENT(B43_OFDM_RATE_12MB, 0),
185 RATETAB_ENT(B43_OFDM_RATE_18MB, 0),
186 RATETAB_ENT(B43_OFDM_RATE_24MB, 0),
187 RATETAB_ENT(B43_OFDM_RATE_36MB, 0),
188 RATETAB_ENT(B43_OFDM_RATE_48MB, 0),
189 RATETAB_ENT(B43_OFDM_RATE_54MB, 0),
192 #define b43_a_ratetable (__b43_ratetable + 4)
193 #define b43_a_ratetable_size 8
194 #define b43_b_ratetable (__b43_ratetable + 0)
195 #define b43_b_ratetable_size 4
196 #define b43_g_ratetable (__b43_ratetable + 0)
197 #define b43_g_ratetable_size 12
199 #define CHAN2G(_channel, _freq, _flags) { \
200 .band = NL80211_BAND_2GHZ, \
201 .center_freq = (_freq), \
202 .hw_value = (_channel), \
204 .max_antenna_gain = 0, \
207 static struct ieee80211_channel b43_2ghz_chantable[] = {
224 /* No support for the last 3 channels (12, 13, 14) */
225 #define b43_2ghz_chantable_limited_size 11
228 #define CHAN4G(_channel, _flags) { \
229 .band = NL80211_BAND_5GHZ, \
230 .center_freq = 4000 + (5 * (_channel)), \
231 .hw_value = (_channel), \
233 .max_antenna_gain = 0, \
236 #define CHAN5G(_channel, _flags) { \
237 .band = NL80211_BAND_5GHZ, \
238 .center_freq = 5000 + (5 * (_channel)), \
239 .hw_value = (_channel), \
241 .max_antenna_gain = 0, \
244 static struct ieee80211_channel b43_5ghz_nphy_chantable[] = {
245 CHAN4G(184, 0), CHAN4G(186, 0),
246 CHAN4G(188, 0), CHAN4G(190, 0),
247 CHAN4G(192, 0), CHAN4G(194, 0),
248 CHAN4G(196, 0), CHAN4G(198, 0),
249 CHAN4G(200, 0), CHAN4G(202, 0),
250 CHAN4G(204, 0), CHAN4G(206, 0),
251 CHAN4G(208, 0), CHAN4G(210, 0),
252 CHAN4G(212, 0), CHAN4G(214, 0),
253 CHAN4G(216, 0), CHAN4G(218, 0),
254 CHAN4G(220, 0), CHAN4G(222, 0),
255 CHAN4G(224, 0), CHAN4G(226, 0),
257 CHAN5G(32, 0), CHAN5G(34, 0),
258 CHAN5G(36, 0), CHAN5G(38, 0),
259 CHAN5G(40, 0), CHAN5G(42, 0),
260 CHAN5G(44, 0), CHAN5G(46, 0),
261 CHAN5G(48, 0), CHAN5G(50, 0),
262 CHAN5G(52, 0), CHAN5G(54, 0),
263 CHAN5G(56, 0), CHAN5G(58, 0),
264 CHAN5G(60, 0), CHAN5G(62, 0),
265 CHAN5G(64, 0), CHAN5G(66, 0),
266 CHAN5G(68, 0), CHAN5G(70, 0),
267 CHAN5G(72, 0), CHAN5G(74, 0),
268 CHAN5G(76, 0), CHAN5G(78, 0),
269 CHAN5G(80, 0), CHAN5G(82, 0),
270 CHAN5G(84, 0), CHAN5G(86, 0),
271 CHAN5G(88, 0), CHAN5G(90, 0),
272 CHAN5G(92, 0), CHAN5G(94, 0),
273 CHAN5G(96, 0), CHAN5G(98, 0),
274 CHAN5G(100, 0), CHAN5G(102, 0),
275 CHAN5G(104, 0), CHAN5G(106, 0),
276 CHAN5G(108, 0), CHAN5G(110, 0),
277 CHAN5G(112, 0), CHAN5G(114, 0),
278 CHAN5G(116, 0), CHAN5G(118, 0),
279 CHAN5G(120, 0), CHAN5G(122, 0),
280 CHAN5G(124, 0), CHAN5G(126, 0),
281 CHAN5G(128, 0), CHAN5G(130, 0),
282 CHAN5G(132, 0), CHAN5G(134, 0),
283 CHAN5G(136, 0), CHAN5G(138, 0),
284 CHAN5G(140, 0), CHAN5G(142, 0),
285 CHAN5G(144, 0), CHAN5G(145, 0),
286 CHAN5G(146, 0), CHAN5G(147, 0),
287 CHAN5G(148, 0), CHAN5G(149, 0),
288 CHAN5G(150, 0), CHAN5G(151, 0),
289 CHAN5G(152, 0), CHAN5G(153, 0),
290 CHAN5G(154, 0), CHAN5G(155, 0),
291 CHAN5G(156, 0), CHAN5G(157, 0),
292 CHAN5G(158, 0), CHAN5G(159, 0),
293 CHAN5G(160, 0), CHAN5G(161, 0),
294 CHAN5G(162, 0), CHAN5G(163, 0),
295 CHAN5G(164, 0), CHAN5G(165, 0),
296 CHAN5G(166, 0), CHAN5G(168, 0),
297 CHAN5G(170, 0), CHAN5G(172, 0),
298 CHAN5G(174, 0), CHAN5G(176, 0),
299 CHAN5G(178, 0), CHAN5G(180, 0),
303 static struct ieee80211_channel b43_5ghz_nphy_chantable_limited[] = {
304 CHAN5G(36, 0), CHAN5G(40, 0),
305 CHAN5G(44, 0), CHAN5G(48, 0),
306 CHAN5G(149, 0), CHAN5G(153, 0),
307 CHAN5G(157, 0), CHAN5G(161, 0),
311 static struct ieee80211_channel b43_5ghz_aphy_chantable[] = {
312 CHAN5G(34, 0), CHAN5G(36, 0),
313 CHAN5G(38, 0), CHAN5G(40, 0),
314 CHAN5G(42, 0), CHAN5G(44, 0),
315 CHAN5G(46, 0), CHAN5G(48, 0),
316 CHAN5G(52, 0), CHAN5G(56, 0),
317 CHAN5G(60, 0), CHAN5G(64, 0),
318 CHAN5G(100, 0), CHAN5G(104, 0),
319 CHAN5G(108, 0), CHAN5G(112, 0),
320 CHAN5G(116, 0), CHAN5G(120, 0),
321 CHAN5G(124, 0), CHAN5G(128, 0),
322 CHAN5G(132, 0), CHAN5G(136, 0),
323 CHAN5G(140, 0), CHAN5G(149, 0),
324 CHAN5G(153, 0), CHAN5G(157, 0),
325 CHAN5G(161, 0), CHAN5G(165, 0),
326 CHAN5G(184, 0), CHAN5G(188, 0),
327 CHAN5G(192, 0), CHAN5G(196, 0),
328 CHAN5G(200, 0), CHAN5G(204, 0),
329 CHAN5G(208, 0), CHAN5G(212, 0),
335 static struct ieee80211_supported_band b43_band_5GHz_nphy = {
336 .band = NL80211_BAND_5GHZ,
337 .channels = b43_5ghz_nphy_chantable,
338 .n_channels = ARRAY_SIZE(b43_5ghz_nphy_chantable),
339 .bitrates = b43_a_ratetable,
340 .n_bitrates = b43_a_ratetable_size,
343 static struct ieee80211_supported_band b43_band_5GHz_nphy_limited = {
344 .band = NL80211_BAND_5GHZ,
345 .channels = b43_5ghz_nphy_chantable_limited,
346 .n_channels = ARRAY_SIZE(b43_5ghz_nphy_chantable_limited),
347 .bitrates = b43_a_ratetable,
348 .n_bitrates = b43_a_ratetable_size,
351 static struct ieee80211_supported_band b43_band_5GHz_aphy = {
352 .band = NL80211_BAND_5GHZ,
353 .channels = b43_5ghz_aphy_chantable,
354 .n_channels = ARRAY_SIZE(b43_5ghz_aphy_chantable),
355 .bitrates = b43_a_ratetable,
356 .n_bitrates = b43_a_ratetable_size,
359 static struct ieee80211_supported_band b43_band_2GHz = {
360 .band = NL80211_BAND_2GHZ,
361 .channels = b43_2ghz_chantable,
362 .n_channels = ARRAY_SIZE(b43_2ghz_chantable),
363 .bitrates = b43_g_ratetable,
364 .n_bitrates = b43_g_ratetable_size,
367 static struct ieee80211_supported_band b43_band_2ghz_limited = {
368 .band = NL80211_BAND_2GHZ,
369 .channels = b43_2ghz_chantable,
370 .n_channels = b43_2ghz_chantable_limited_size,
371 .bitrates = b43_g_ratetable,
372 .n_bitrates = b43_g_ratetable_size,
375 static void b43_wireless_core_exit(struct b43_wldev *dev);
376 static int b43_wireless_core_init(struct b43_wldev *dev);
377 static struct b43_wldev * b43_wireless_core_stop(struct b43_wldev *dev);
378 static int b43_wireless_core_start(struct b43_wldev *dev);
379 static void b43_op_bss_info_changed(struct ieee80211_hw *hw,
380 struct ieee80211_vif *vif,
381 struct ieee80211_bss_conf *conf,
384 static int b43_ratelimit(struct b43_wl *wl)
386 if (!wl || !wl->current_dev)
388 if (b43_status(wl->current_dev) < B43_STAT_STARTED)
390 /* We are up and running.
391 * Ratelimit the messages to avoid DoS over the net. */
392 return net_ratelimit();
395 void b43info(struct b43_wl *wl, const char *fmt, ...)
397 struct va_format vaf;
400 if (b43_modparam_verbose < B43_VERBOSITY_INFO)
402 if (!b43_ratelimit(wl))
410 printk(KERN_INFO "b43-%s: %pV",
411 (wl && wl->hw) ? wiphy_name(wl->hw->wiphy) : "wlan", &vaf);
416 void b43err(struct b43_wl *wl, const char *fmt, ...)
418 struct va_format vaf;
421 if (b43_modparam_verbose < B43_VERBOSITY_ERROR)
423 if (!b43_ratelimit(wl))
431 printk(KERN_ERR "b43-%s ERROR: %pV",
432 (wl && wl->hw) ? wiphy_name(wl->hw->wiphy) : "wlan", &vaf);
437 void b43warn(struct b43_wl *wl, const char *fmt, ...)
439 struct va_format vaf;
442 if (b43_modparam_verbose < B43_VERBOSITY_WARN)
444 if (!b43_ratelimit(wl))
452 printk(KERN_WARNING "b43-%s warning: %pV",
453 (wl && wl->hw) ? wiphy_name(wl->hw->wiphy) : "wlan", &vaf);
458 void b43dbg(struct b43_wl *wl, const char *fmt, ...)
460 struct va_format vaf;
463 if (b43_modparam_verbose < B43_VERBOSITY_DEBUG)
471 printk(KERN_DEBUG "b43-%s debug: %pV",
472 (wl && wl->hw) ? wiphy_name(wl->hw->wiphy) : "wlan", &vaf);
477 static void b43_ram_write(struct b43_wldev *dev, u16 offset, u32 val)
481 B43_WARN_ON(offset % 4 != 0);
483 macctl = b43_read32(dev, B43_MMIO_MACCTL);
484 if (macctl & B43_MACCTL_BE)
487 b43_write32(dev, B43_MMIO_RAM_CONTROL, offset);
488 b43_write32(dev, B43_MMIO_RAM_DATA, val);
491 static inline void b43_shm_control_word(struct b43_wldev *dev,
492 u16 routing, u16 offset)
496 /* "offset" is the WORD offset. */
500 b43_write32(dev, B43_MMIO_SHM_CONTROL, control);
503 u32 b43_shm_read32(struct b43_wldev *dev, u16 routing, u16 offset)
507 if (routing == B43_SHM_SHARED) {
508 B43_WARN_ON(offset & 0x0001);
509 if (offset & 0x0003) {
510 /* Unaligned access */
511 b43_shm_control_word(dev, routing, offset >> 2);
512 ret = b43_read16(dev, B43_MMIO_SHM_DATA_UNALIGNED);
513 b43_shm_control_word(dev, routing, (offset >> 2) + 1);
514 ret |= ((u32)b43_read16(dev, B43_MMIO_SHM_DATA)) << 16;
520 b43_shm_control_word(dev, routing, offset);
521 ret = b43_read32(dev, B43_MMIO_SHM_DATA);
526 u16 b43_shm_read16(struct b43_wldev *dev, u16 routing, u16 offset)
530 if (routing == B43_SHM_SHARED) {
531 B43_WARN_ON(offset & 0x0001);
532 if (offset & 0x0003) {
533 /* Unaligned access */
534 b43_shm_control_word(dev, routing, offset >> 2);
535 ret = b43_read16(dev, B43_MMIO_SHM_DATA_UNALIGNED);
541 b43_shm_control_word(dev, routing, offset);
542 ret = b43_read16(dev, B43_MMIO_SHM_DATA);
547 void b43_shm_write32(struct b43_wldev *dev, u16 routing, u16 offset, u32 value)
549 if (routing == B43_SHM_SHARED) {
550 B43_WARN_ON(offset & 0x0001);
551 if (offset & 0x0003) {
552 /* Unaligned access */
553 b43_shm_control_word(dev, routing, offset >> 2);
554 b43_write16(dev, B43_MMIO_SHM_DATA_UNALIGNED,
556 b43_shm_control_word(dev, routing, (offset >> 2) + 1);
557 b43_write16(dev, B43_MMIO_SHM_DATA,
558 (value >> 16) & 0xFFFF);
563 b43_shm_control_word(dev, routing, offset);
564 b43_write32(dev, B43_MMIO_SHM_DATA, value);
567 void b43_shm_write16(struct b43_wldev *dev, u16 routing, u16 offset, u16 value)
569 if (routing == B43_SHM_SHARED) {
570 B43_WARN_ON(offset & 0x0001);
571 if (offset & 0x0003) {
572 /* Unaligned access */
573 b43_shm_control_word(dev, routing, offset >> 2);
574 b43_write16(dev, B43_MMIO_SHM_DATA_UNALIGNED, value);
579 b43_shm_control_word(dev, routing, offset);
580 b43_write16(dev, B43_MMIO_SHM_DATA, value);
584 u64 b43_hf_read(struct b43_wldev *dev)
588 ret = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_HOSTF3);
590 ret |= b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_HOSTF2);
592 ret |= b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_HOSTF1);
597 /* Write HostFlags */
598 void b43_hf_write(struct b43_wldev *dev, u64 value)
602 lo = (value & 0x00000000FFFFULL);
603 mi = (value & 0x0000FFFF0000ULL) >> 16;
604 hi = (value & 0xFFFF00000000ULL) >> 32;
605 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_HOSTF1, lo);
606 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_HOSTF2, mi);
607 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_HOSTF3, hi);
610 /* Read the firmware capabilities bitmask (Opensource firmware only) */
611 static u16 b43_fwcapa_read(struct b43_wldev *dev)
613 B43_WARN_ON(!dev->fw.opensource);
614 return b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_FWCAPA);
617 void b43_tsf_read(struct b43_wldev *dev, u64 *tsf)
621 B43_WARN_ON(dev->dev->core_rev < 3);
623 /* The hardware guarantees us an atomic read, if we
624 * read the low register first. */
625 low = b43_read32(dev, B43_MMIO_REV3PLUS_TSF_LOW);
626 high = b43_read32(dev, B43_MMIO_REV3PLUS_TSF_HIGH);
633 static void b43_time_lock(struct b43_wldev *dev)
635 b43_maskset32(dev, B43_MMIO_MACCTL, ~0, B43_MACCTL_TBTTHOLD);
636 /* Commit the write */
637 b43_read32(dev, B43_MMIO_MACCTL);
640 static void b43_time_unlock(struct b43_wldev *dev)
642 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_TBTTHOLD, 0);
643 /* Commit the write */
644 b43_read32(dev, B43_MMIO_MACCTL);
647 static void b43_tsf_write_locked(struct b43_wldev *dev, u64 tsf)
651 B43_WARN_ON(dev->dev->core_rev < 3);
655 /* The hardware guarantees us an atomic write, if we
656 * write the low register first. */
657 b43_write32(dev, B43_MMIO_REV3PLUS_TSF_LOW, low);
658 b43_write32(dev, B43_MMIO_REV3PLUS_TSF_HIGH, high);
661 void b43_tsf_write(struct b43_wldev *dev, u64 tsf)
664 b43_tsf_write_locked(dev, tsf);
665 b43_time_unlock(dev);
669 void b43_macfilter_set(struct b43_wldev *dev, u16 offset, const u8 *mac)
671 static const u8 zero_addr[ETH_ALEN] = { 0 };
678 b43_write16(dev, B43_MMIO_MACFILTER_CONTROL, offset);
682 b43_write16(dev, B43_MMIO_MACFILTER_DATA, data);
685 b43_write16(dev, B43_MMIO_MACFILTER_DATA, data);
688 b43_write16(dev, B43_MMIO_MACFILTER_DATA, data);
691 static void b43_write_mac_bssid_templates(struct b43_wldev *dev)
695 u8 mac_bssid[ETH_ALEN * 2];
699 bssid = dev->wl->bssid;
700 mac = dev->wl->mac_addr;
702 b43_macfilter_set(dev, B43_MACFILTER_BSSID, bssid);
704 memcpy(mac_bssid, mac, ETH_ALEN);
705 memcpy(mac_bssid + ETH_ALEN, bssid, ETH_ALEN);
707 /* Write our MAC address and BSSID to template ram */
708 for (i = 0; i < ARRAY_SIZE(mac_bssid); i += sizeof(u32)) {
709 tmp = (u32) (mac_bssid[i + 0]);
710 tmp |= (u32) (mac_bssid[i + 1]) << 8;
711 tmp |= (u32) (mac_bssid[i + 2]) << 16;
712 tmp |= (u32) (mac_bssid[i + 3]) << 24;
713 b43_ram_write(dev, 0x20 + i, tmp);
717 static void b43_upload_card_macaddress(struct b43_wldev *dev)
719 b43_write_mac_bssid_templates(dev);
720 b43_macfilter_set(dev, B43_MACFILTER_SELF, dev->wl->mac_addr);
723 static void b43_set_slot_time(struct b43_wldev *dev, u16 slot_time)
725 /* slot_time is in usec. */
726 /* This test used to exit for all but a G PHY. */
727 if (b43_current_band(dev->wl) == NL80211_BAND_5GHZ)
729 b43_write16(dev, B43_MMIO_IFSSLOT, 510 + slot_time);
730 /* Shared memory location 0x0010 is the slot time and should be
731 * set to slot_time; however, this register is initially 0 and changing
732 * the value adversely affects the transmit rate for BCM4311
733 * devices. Until this behavior is unterstood, delete this step
735 * b43_shm_write16(dev, B43_SHM_SHARED, 0x0010, slot_time);
739 static void b43_short_slot_timing_enable(struct b43_wldev *dev)
741 b43_set_slot_time(dev, 9);
744 static void b43_short_slot_timing_disable(struct b43_wldev *dev)
746 b43_set_slot_time(dev, 20);
749 /* DummyTransmission function, as documented on
750 * http://bcm-v4.sipsolutions.net/802.11/DummyTransmission
752 void b43_dummy_transmission(struct b43_wldev *dev, bool ofdm, bool pa_on)
754 struct b43_phy *phy = &dev->phy;
755 unsigned int i, max_loop;
767 buffer[0] = 0x000201CC;
770 buffer[0] = 0x000B846E;
773 for (i = 0; i < 5; i++)
774 b43_ram_write(dev, i * 4, buffer[i]);
776 b43_write16(dev, B43_MMIO_XMTSEL, 0x0000);
778 if (dev->dev->core_rev < 11)
779 b43_write16(dev, B43_MMIO_WEPCTL, 0x0000);
781 b43_write16(dev, B43_MMIO_WEPCTL, 0x0100);
783 value = (ofdm ? 0x41 : 0x40);
784 b43_write16(dev, B43_MMIO_TXE0_PHYCTL, value);
785 if (phy->type == B43_PHYTYPE_N || phy->type == B43_PHYTYPE_LP ||
786 phy->type == B43_PHYTYPE_LCN)
787 b43_write16(dev, B43_MMIO_TXE0_PHYCTL1, 0x1A02);
789 b43_write16(dev, B43_MMIO_TXE0_WM_0, 0x0000);
790 b43_write16(dev, B43_MMIO_TXE0_WM_1, 0x0000);
792 b43_write16(dev, B43_MMIO_XMTTPLATETXPTR, 0x0000);
793 b43_write16(dev, B43_MMIO_XMTTXCNT, 0x0014);
794 b43_write16(dev, B43_MMIO_XMTSEL, 0x0826);
795 b43_write16(dev, B43_MMIO_TXE0_CTL, 0x0000);
797 if (!pa_on && phy->type == B43_PHYTYPE_N)
798 ; /*b43_nphy_pa_override(dev, false) */
802 case B43_PHYTYPE_LCN:
803 b43_write16(dev, B43_MMIO_TXE0_AUX, 0x00D0);
806 b43_write16(dev, B43_MMIO_TXE0_AUX, 0x0050);
809 b43_write16(dev, B43_MMIO_TXE0_AUX, 0x0030);
811 b43_read16(dev, B43_MMIO_TXE0_AUX);
813 if (phy->radio_ver == 0x2050 && phy->radio_rev <= 0x5)
814 b43_radio_write16(dev, 0x0051, 0x0017);
815 for (i = 0x00; i < max_loop; i++) {
816 value = b43_read16(dev, B43_MMIO_TXE0_STATUS);
821 for (i = 0x00; i < 0x0A; i++) {
822 value = b43_read16(dev, B43_MMIO_TXE0_STATUS);
827 for (i = 0x00; i < 0x19; i++) {
828 value = b43_read16(dev, B43_MMIO_IFSSTAT);
829 if (!(value & 0x0100))
833 if (phy->radio_ver == 0x2050 && phy->radio_rev <= 0x5)
834 b43_radio_write16(dev, 0x0051, 0x0037);
837 static void key_write(struct b43_wldev *dev,
838 u8 index, u8 algorithm, const u8 *key)
845 /* Key index/algo block */
846 kidx = b43_kidx_to_fw(dev, index);
847 value = ((kidx << 4) | algorithm);
848 b43_shm_write16(dev, B43_SHM_SHARED,
849 B43_SHM_SH_KEYIDXBLOCK + (kidx * 2), value);
851 /* Write the key to the Key Table Pointer offset */
852 offset = dev->ktp + (index * B43_SEC_KEYSIZE);
853 for (i = 0; i < B43_SEC_KEYSIZE; i += 2) {
855 value |= (u16) (key[i + 1]) << 8;
856 b43_shm_write16(dev, B43_SHM_SHARED, offset + i, value);
860 static void keymac_write(struct b43_wldev *dev, u8 index, const u8 *addr)
862 u32 addrtmp[2] = { 0, 0, };
863 u8 pairwise_keys_start = B43_NR_GROUP_KEYS * 2;
865 if (b43_new_kidx_api(dev))
866 pairwise_keys_start = B43_NR_GROUP_KEYS;
868 B43_WARN_ON(index < pairwise_keys_start);
869 /* We have four default TX keys and possibly four default RX keys.
870 * Physical mac 0 is mapped to physical key 4 or 8, depending
871 * on the firmware version.
872 * So we must adjust the index here.
874 index -= pairwise_keys_start;
875 B43_WARN_ON(index >= B43_NR_PAIRWISE_KEYS);
878 addrtmp[0] = addr[0];
879 addrtmp[0] |= ((u32) (addr[1]) << 8);
880 addrtmp[0] |= ((u32) (addr[2]) << 16);
881 addrtmp[0] |= ((u32) (addr[3]) << 24);
882 addrtmp[1] = addr[4];
883 addrtmp[1] |= ((u32) (addr[5]) << 8);
886 /* Receive match transmitter address (RCMTA) mechanism */
887 b43_shm_write32(dev, B43_SHM_RCMTA,
888 (index * 2) + 0, addrtmp[0]);
889 b43_shm_write16(dev, B43_SHM_RCMTA,
890 (index * 2) + 1, addrtmp[1]);
893 /* The ucode will use phase1 key with TEK key to decrypt rx packets.
894 * When a packet is received, the iv32 is checked.
895 * - if it doesn't the packet is returned without modification (and software
896 * decryption can be done). That's what happen when iv16 wrap.
897 * - if it does, the rc4 key is computed, and decryption is tried.
898 * Either it will success and B43_RX_MAC_DEC is returned,
899 * either it fails and B43_RX_MAC_DEC|B43_RX_MAC_DECERR is returned
900 * and the packet is not usable (it got modified by the ucode).
901 * So in order to never have B43_RX_MAC_DECERR, we should provide
902 * a iv32 and phase1key that match. Because we drop packets in case of
903 * B43_RX_MAC_DECERR, if we have a correct iv32 but a wrong phase1key, all
904 * packets will be lost without higher layer knowing (ie no resync possible
907 * NOTE : this should support 50 key like RCMTA because
908 * (B43_SHM_SH_KEYIDXBLOCK - B43_SHM_SH_TKIPTSCTTAK)/14 = 50
910 static void rx_tkip_phase1_write(struct b43_wldev *dev, u8 index, u32 iv32,
915 u8 pairwise_keys_start = B43_NR_GROUP_KEYS * 2;
917 if (!modparam_hwtkip)
920 if (b43_new_kidx_api(dev))
921 pairwise_keys_start = B43_NR_GROUP_KEYS;
923 B43_WARN_ON(index < pairwise_keys_start);
924 /* We have four default TX keys and possibly four default RX keys.
925 * Physical mac 0 is mapped to physical key 4 or 8, depending
926 * on the firmware version.
927 * So we must adjust the index here.
929 index -= pairwise_keys_start;
930 B43_WARN_ON(index >= B43_NR_PAIRWISE_KEYS);
932 if (b43_debug(dev, B43_DBG_KEYS)) {
933 b43dbg(dev->wl, "rx_tkip_phase1_write : idx 0x%x, iv32 0x%x\n",
936 /* Write the key to the RX tkip shared mem */
937 offset = B43_SHM_SH_TKIPTSCTTAK + index * (10 + 4);
938 for (i = 0; i < 10; i += 2) {
939 b43_shm_write16(dev, B43_SHM_SHARED, offset + i,
940 phase1key ? phase1key[i / 2] : 0);
942 b43_shm_write16(dev, B43_SHM_SHARED, offset + i, iv32);
943 b43_shm_write16(dev, B43_SHM_SHARED, offset + i + 2, iv32 >> 16);
946 static void b43_op_update_tkip_key(struct ieee80211_hw *hw,
947 struct ieee80211_vif *vif,
948 struct ieee80211_key_conf *keyconf,
949 struct ieee80211_sta *sta,
950 u32 iv32, u16 *phase1key)
952 struct b43_wl *wl = hw_to_b43_wl(hw);
953 struct b43_wldev *dev;
954 int index = keyconf->hw_key_idx;
956 if (B43_WARN_ON(!modparam_hwtkip))
959 /* This is only called from the RX path through mac80211, where
960 * our mutex is already locked. */
961 B43_WARN_ON(!mutex_is_locked(&wl->mutex));
962 dev = wl->current_dev;
963 B43_WARN_ON(!dev || b43_status(dev) < B43_STAT_INITIALIZED);
965 keymac_write(dev, index, NULL); /* First zero out mac to avoid race */
967 rx_tkip_phase1_write(dev, index, iv32, phase1key);
968 /* only pairwise TKIP keys are supported right now */
971 keymac_write(dev, index, sta->addr);
974 static void do_key_write(struct b43_wldev *dev,
975 u8 index, u8 algorithm,
976 const u8 *key, size_t key_len, const u8 *mac_addr)
978 u8 buf[B43_SEC_KEYSIZE] = { 0, };
979 u8 pairwise_keys_start = B43_NR_GROUP_KEYS * 2;
981 if (b43_new_kidx_api(dev))
982 pairwise_keys_start = B43_NR_GROUP_KEYS;
984 B43_WARN_ON(index >= ARRAY_SIZE(dev->key));
985 B43_WARN_ON(key_len > B43_SEC_KEYSIZE);
987 if (index >= pairwise_keys_start)
988 keymac_write(dev, index, NULL); /* First zero out mac. */
989 if (algorithm == B43_SEC_ALGO_TKIP) {
991 * We should provide an initial iv32, phase1key pair.
992 * We could start with iv32=0 and compute the corresponding
993 * phase1key, but this means calling ieee80211_get_tkip_key
994 * with a fake skb (or export other tkip function).
995 * Because we are lazy we hope iv32 won't start with
996 * 0xffffffff and let's b43_op_update_tkip_key provide a
999 rx_tkip_phase1_write(dev, index, 0xffffffff, (u16*)buf);
1000 } else if (index >= pairwise_keys_start) /* clear it */
1001 rx_tkip_phase1_write(dev, index, 0, NULL);
1003 memcpy(buf, key, key_len);
1004 key_write(dev, index, algorithm, buf);
1005 if (index >= pairwise_keys_start)
1006 keymac_write(dev, index, mac_addr);
1008 dev->key[index].algorithm = algorithm;
1011 static int b43_key_write(struct b43_wldev *dev,
1012 int index, u8 algorithm,
1013 const u8 *key, size_t key_len,
1015 struct ieee80211_key_conf *keyconf)
1018 int pairwise_keys_start;
1020 /* For ALG_TKIP the key is encoded as a 256-bit (32 byte) data block:
1021 * - Temporal Encryption Key (128 bits)
1022 * - Temporal Authenticator Tx MIC Key (64 bits)
1023 * - Temporal Authenticator Rx MIC Key (64 bits)
1025 * Hardware only store TEK
1027 if (algorithm == B43_SEC_ALGO_TKIP && key_len == 32)
1029 if (key_len > B43_SEC_KEYSIZE)
1031 for (i = 0; i < ARRAY_SIZE(dev->key); i++) {
1032 /* Check that we don't already have this key. */
1033 B43_WARN_ON(dev->key[i].keyconf == keyconf);
1036 /* Pairwise key. Get an empty slot for the key. */
1037 if (b43_new_kidx_api(dev))
1038 pairwise_keys_start = B43_NR_GROUP_KEYS;
1040 pairwise_keys_start = B43_NR_GROUP_KEYS * 2;
1041 for (i = pairwise_keys_start;
1042 i < pairwise_keys_start + B43_NR_PAIRWISE_KEYS;
1044 B43_WARN_ON(i >= ARRAY_SIZE(dev->key));
1045 if (!dev->key[i].keyconf) {
1052 b43warn(dev->wl, "Out of hardware key memory\n");
1056 B43_WARN_ON(index > 3);
1058 do_key_write(dev, index, algorithm, key, key_len, mac_addr);
1059 if ((index <= 3) && !b43_new_kidx_api(dev)) {
1060 /* Default RX key */
1061 B43_WARN_ON(mac_addr);
1062 do_key_write(dev, index + 4, algorithm, key, key_len, NULL);
1064 keyconf->hw_key_idx = index;
1065 dev->key[index].keyconf = keyconf;
1070 static int b43_key_clear(struct b43_wldev *dev, int index)
1072 if (B43_WARN_ON((index < 0) || (index >= ARRAY_SIZE(dev->key))))
1074 do_key_write(dev, index, B43_SEC_ALGO_NONE,
1075 NULL, B43_SEC_KEYSIZE, NULL);
1076 if ((index <= 3) && !b43_new_kidx_api(dev)) {
1077 do_key_write(dev, index + 4, B43_SEC_ALGO_NONE,
1078 NULL, B43_SEC_KEYSIZE, NULL);
1080 dev->key[index].keyconf = NULL;
1085 static void b43_clear_keys(struct b43_wldev *dev)
1089 if (b43_new_kidx_api(dev))
1090 count = B43_NR_GROUP_KEYS + B43_NR_PAIRWISE_KEYS;
1092 count = B43_NR_GROUP_KEYS * 2 + B43_NR_PAIRWISE_KEYS;
1093 for (i = 0; i < count; i++)
1094 b43_key_clear(dev, i);
1097 static void b43_dump_keymemory(struct b43_wldev *dev)
1099 unsigned int i, index, count, offset, pairwise_keys_start;
1105 struct b43_key *key;
1107 if (!b43_debug(dev, B43_DBG_KEYS))
1110 hf = b43_hf_read(dev);
1111 b43dbg(dev->wl, "Hardware key memory dump: USEDEFKEYS=%u\n",
1112 !!(hf & B43_HF_USEDEFKEYS));
1113 if (b43_new_kidx_api(dev)) {
1114 pairwise_keys_start = B43_NR_GROUP_KEYS;
1115 count = B43_NR_GROUP_KEYS + B43_NR_PAIRWISE_KEYS;
1117 pairwise_keys_start = B43_NR_GROUP_KEYS * 2;
1118 count = B43_NR_GROUP_KEYS * 2 + B43_NR_PAIRWISE_KEYS;
1120 for (index = 0; index < count; index++) {
1121 key = &(dev->key[index]);
1122 printk(KERN_DEBUG "Key slot %02u: %s",
1123 index, (key->keyconf == NULL) ? " " : "*");
1124 offset = dev->ktp + (index * B43_SEC_KEYSIZE);
1125 for (i = 0; i < B43_SEC_KEYSIZE; i += 2) {
1126 u16 tmp = b43_shm_read16(dev, B43_SHM_SHARED, offset + i);
1127 printk("%02X%02X", (tmp & 0xFF), ((tmp >> 8) & 0xFF));
1130 algo = b43_shm_read16(dev, B43_SHM_SHARED,
1131 B43_SHM_SH_KEYIDXBLOCK + (index * 2));
1132 printk(" Algo: %04X/%02X", algo, key->algorithm);
1134 if (index >= pairwise_keys_start) {
1135 if (key->algorithm == B43_SEC_ALGO_TKIP) {
1137 offset = B43_SHM_SH_TKIPTSCTTAK + (index - 4) * (10 + 4);
1138 for (i = 0; i < 14; i += 2) {
1139 u16 tmp = b43_shm_read16(dev, B43_SHM_SHARED, offset + i);
1140 printk("%02X%02X", (tmp & 0xFF), ((tmp >> 8) & 0xFF));
1143 rcmta0 = b43_shm_read32(dev, B43_SHM_RCMTA,
1144 ((index - pairwise_keys_start) * 2) + 0);
1145 rcmta1 = b43_shm_read16(dev, B43_SHM_RCMTA,
1146 ((index - pairwise_keys_start) * 2) + 1);
1147 *((__le32 *)(&mac[0])) = cpu_to_le32(rcmta0);
1148 *((__le16 *)(&mac[4])) = cpu_to_le16(rcmta1);
1149 printk(" MAC: %pM", mac);
1151 printk(" DEFAULT KEY");
1156 void b43_power_saving_ctl_bits(struct b43_wldev *dev, unsigned int ps_flags)
1164 B43_WARN_ON((ps_flags & B43_PS_ENABLED) &&
1165 (ps_flags & B43_PS_DISABLED));
1166 B43_WARN_ON((ps_flags & B43_PS_AWAKE) && (ps_flags & B43_PS_ASLEEP));
1168 if (ps_flags & B43_PS_ENABLED) {
1170 } else if (ps_flags & B43_PS_DISABLED) {
1173 //TODO: If powersave is not off and FIXME is not set and we are not in adhoc
1174 // and thus is not an AP and we are associated, set bit 25
1176 if (ps_flags & B43_PS_AWAKE) {
1178 } else if (ps_flags & B43_PS_ASLEEP) {
1181 //TODO: If the device is awake or this is an AP, or we are scanning, or FIXME,
1182 // or we are associated, or FIXME, or the latest PS-Poll packet sent was
1183 // successful, set bit26
1186 /* FIXME: For now we force awake-on and hwps-off */
1190 macctl = b43_read32(dev, B43_MMIO_MACCTL);
1192 macctl |= B43_MACCTL_HWPS;
1194 macctl &= ~B43_MACCTL_HWPS;
1196 macctl |= B43_MACCTL_AWAKE;
1198 macctl &= ~B43_MACCTL_AWAKE;
1199 b43_write32(dev, B43_MMIO_MACCTL, macctl);
1201 b43_read32(dev, B43_MMIO_MACCTL);
1202 if (awake && dev->dev->core_rev >= 5) {
1203 /* Wait for the microcode to wake up. */
1204 for (i = 0; i < 100; i++) {
1205 ucstat = b43_shm_read16(dev, B43_SHM_SHARED,
1206 B43_SHM_SH_UCODESTAT);
1207 if (ucstat != B43_SHM_SH_UCODESTAT_SLEEP)
1214 /* http://bcm-v4.sipsolutions.net/802.11/PHY/BmacCorePllReset */
1215 void b43_wireless_core_phy_pll_reset(struct b43_wldev *dev)
1217 struct bcma_drv_cc *bcma_cc __maybe_unused;
1218 struct ssb_chipcommon *ssb_cc __maybe_unused;
1220 switch (dev->dev->bus_type) {
1221 #ifdef CONFIG_B43_BCMA
1223 bcma_cc = &dev->dev->bdev->bus->drv_cc;
1225 bcma_cc_write32(bcma_cc, BCMA_CC_PMU_CHIPCTL_ADDR, 0);
1226 bcma_cc_mask32(bcma_cc, BCMA_CC_PMU_CHIPCTL_DATA, ~0x4);
1227 bcma_cc_set32(bcma_cc, BCMA_CC_PMU_CHIPCTL_DATA, 0x4);
1228 bcma_cc_mask32(bcma_cc, BCMA_CC_PMU_CHIPCTL_DATA, ~0x4);
1231 #ifdef CONFIG_B43_SSB
1233 ssb_cc = &dev->dev->sdev->bus->chipco;
1235 chipco_write32(ssb_cc, SSB_CHIPCO_CHIPCTL_ADDR, 0);
1236 chipco_mask32(ssb_cc, SSB_CHIPCO_CHIPCTL_DATA, ~0x4);
1237 chipco_set32(ssb_cc, SSB_CHIPCO_CHIPCTL_DATA, 0x4);
1238 chipco_mask32(ssb_cc, SSB_CHIPCO_CHIPCTL_DATA, ~0x4);
1244 #ifdef CONFIG_B43_BCMA
1245 static void b43_bcma_phy_reset(struct b43_wldev *dev)
1249 /* Put PHY into reset */
1250 flags = bcma_aread32(dev->dev->bdev, BCMA_IOCTL);
1251 flags |= B43_BCMA_IOCTL_PHY_RESET;
1252 flags |= B43_BCMA_IOCTL_PHY_BW_20MHZ; /* Make 20 MHz def */
1253 bcma_awrite32(dev->dev->bdev, BCMA_IOCTL, flags);
1256 b43_phy_take_out_of_reset(dev);
1259 static void b43_bcma_wireless_core_reset(struct b43_wldev *dev, bool gmode)
1261 u32 req = B43_BCMA_CLKCTLST_80211_PLL_REQ |
1262 B43_BCMA_CLKCTLST_PHY_PLL_REQ;
1263 u32 status = B43_BCMA_CLKCTLST_80211_PLL_ST |
1264 B43_BCMA_CLKCTLST_PHY_PLL_ST;
1267 flags = B43_BCMA_IOCTL_PHY_CLKEN;
1269 flags |= B43_BCMA_IOCTL_GMODE;
1270 b43_device_enable(dev, flags);
1272 if (dev->phy.type == B43_PHYTYPE_AC) {
1275 tmp = bcma_aread32(dev->dev->bdev, BCMA_IOCTL);
1276 tmp &= ~B43_BCMA_IOCTL_DAC;
1278 bcma_awrite32(dev->dev->bdev, BCMA_IOCTL, tmp);
1280 tmp = bcma_aread32(dev->dev->bdev, BCMA_IOCTL);
1281 tmp &= ~B43_BCMA_IOCTL_PHY_CLKEN;
1282 bcma_awrite32(dev->dev->bdev, BCMA_IOCTL, tmp);
1284 tmp = bcma_aread32(dev->dev->bdev, BCMA_IOCTL);
1285 tmp |= B43_BCMA_IOCTL_PHY_CLKEN;
1286 bcma_awrite32(dev->dev->bdev, BCMA_IOCTL, tmp);
1289 bcma_core_set_clockmode(dev->dev->bdev, BCMA_CLKMODE_FAST);
1290 b43_bcma_phy_reset(dev);
1291 bcma_core_pll_ctl(dev->dev->bdev, req, status, true);
1295 #ifdef CONFIG_B43_SSB
1296 static void b43_ssb_wireless_core_reset(struct b43_wldev *dev, bool gmode)
1301 flags |= B43_TMSLOW_GMODE;
1302 flags |= B43_TMSLOW_PHYCLKEN;
1303 flags |= B43_TMSLOW_PHYRESET;
1304 if (dev->phy.type == B43_PHYTYPE_N)
1305 flags |= B43_TMSLOW_PHY_BANDWIDTH_20MHZ; /* Make 20 MHz def */
1306 b43_device_enable(dev, flags);
1307 msleep(2); /* Wait for the PLL to turn on. */
1309 b43_phy_take_out_of_reset(dev);
1313 void b43_wireless_core_reset(struct b43_wldev *dev, bool gmode)
1317 switch (dev->dev->bus_type) {
1318 #ifdef CONFIG_B43_BCMA
1320 b43_bcma_wireless_core_reset(dev, gmode);
1323 #ifdef CONFIG_B43_SSB
1325 b43_ssb_wireless_core_reset(dev, gmode);
1330 /* Turn Analog ON, but only if we already know the PHY-type.
1331 * This protects against very early setup where we don't know the
1332 * PHY-type, yet. wireless_core_reset will be called once again later,
1333 * when we know the PHY-type. */
1335 dev->phy.ops->switch_analog(dev, 1);
1337 macctl = b43_read32(dev, B43_MMIO_MACCTL);
1338 macctl &= ~B43_MACCTL_GMODE;
1340 macctl |= B43_MACCTL_GMODE;
1341 macctl |= B43_MACCTL_IHR_ENABLED;
1342 b43_write32(dev, B43_MMIO_MACCTL, macctl);
1345 static void handle_irq_transmit_status(struct b43_wldev *dev)
1349 struct b43_txstatus stat;
1352 v0 = b43_read32(dev, B43_MMIO_XMITSTAT_0);
1353 if (!(v0 & 0x00000001))
1355 v1 = b43_read32(dev, B43_MMIO_XMITSTAT_1);
1357 stat.cookie = (v0 >> 16);
1358 stat.seq = (v1 & 0x0000FFFF);
1359 stat.phy_stat = ((v1 & 0x00FF0000) >> 16);
1360 tmp = (v0 & 0x0000FFFF);
1361 stat.frame_count = ((tmp & 0xF000) >> 12);
1362 stat.rts_count = ((tmp & 0x0F00) >> 8);
1363 stat.supp_reason = ((tmp & 0x001C) >> 2);
1364 stat.pm_indicated = !!(tmp & 0x0080);
1365 stat.intermediate = !!(tmp & 0x0040);
1366 stat.for_ampdu = !!(tmp & 0x0020);
1367 stat.acked = !!(tmp & 0x0002);
1369 b43_handle_txstatus(dev, &stat);
1373 static void drain_txstatus_queue(struct b43_wldev *dev)
1377 if (dev->dev->core_rev < 5)
1379 /* Read all entries from the microcode TXstatus FIFO
1380 * and throw them away.
1383 dummy = b43_read32(dev, B43_MMIO_XMITSTAT_0);
1384 if (!(dummy & 0x00000001))
1386 dummy = b43_read32(dev, B43_MMIO_XMITSTAT_1);
1390 static u32 b43_jssi_read(struct b43_wldev *dev)
1394 val = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_JSSI1);
1396 val |= b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_JSSI0);
1401 static void b43_jssi_write(struct b43_wldev *dev, u32 jssi)
1403 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_JSSI0,
1404 (jssi & 0x0000FFFF));
1405 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_JSSI1,
1406 (jssi & 0xFFFF0000) >> 16);
1409 static void b43_generate_noise_sample(struct b43_wldev *dev)
1411 b43_jssi_write(dev, 0x7F7F7F7F);
1412 b43_write32(dev, B43_MMIO_MACCMD,
1413 b43_read32(dev, B43_MMIO_MACCMD) | B43_MACCMD_BGNOISE);
1416 static void b43_calculate_link_quality(struct b43_wldev *dev)
1418 /* Top half of Link Quality calculation. */
1420 if (dev->phy.type != B43_PHYTYPE_G)
1422 if (dev->noisecalc.calculation_running)
1424 dev->noisecalc.calculation_running = true;
1425 dev->noisecalc.nr_samples = 0;
1427 b43_generate_noise_sample(dev);
1430 static void handle_irq_noise(struct b43_wldev *dev)
1432 struct b43_phy_g *phy = dev->phy.g;
1438 /* Bottom half of Link Quality calculation. */
1440 if (dev->phy.type != B43_PHYTYPE_G)
1443 /* Possible race condition: It might be possible that the user
1444 * changed to a different channel in the meantime since we
1445 * started the calculation. We ignore that fact, since it's
1446 * not really that much of a problem. The background noise is
1447 * an estimation only anyway. Slightly wrong results will get damped
1448 * by the averaging of the 8 sample rounds. Additionally the
1449 * value is shortlived. So it will be replaced by the next noise
1450 * calculation round soon. */
1452 B43_WARN_ON(!dev->noisecalc.calculation_running);
1453 *((__le32 *)noise) = cpu_to_le32(b43_jssi_read(dev));
1454 if (noise[0] == 0x7F || noise[1] == 0x7F ||
1455 noise[2] == 0x7F || noise[3] == 0x7F)
1458 /* Get the noise samples. */
1459 B43_WARN_ON(dev->noisecalc.nr_samples >= 8);
1460 i = dev->noisecalc.nr_samples;
1461 noise[0] = clamp_val(noise[0], 0, ARRAY_SIZE(phy->nrssi_lt) - 1);
1462 noise[1] = clamp_val(noise[1], 0, ARRAY_SIZE(phy->nrssi_lt) - 1);
1463 noise[2] = clamp_val(noise[2], 0, ARRAY_SIZE(phy->nrssi_lt) - 1);
1464 noise[3] = clamp_val(noise[3], 0, ARRAY_SIZE(phy->nrssi_lt) - 1);
1465 dev->noisecalc.samples[i][0] = phy->nrssi_lt[noise[0]];
1466 dev->noisecalc.samples[i][1] = phy->nrssi_lt[noise[1]];
1467 dev->noisecalc.samples[i][2] = phy->nrssi_lt[noise[2]];
1468 dev->noisecalc.samples[i][3] = phy->nrssi_lt[noise[3]];
1469 dev->noisecalc.nr_samples++;
1470 if (dev->noisecalc.nr_samples == 8) {
1471 /* Calculate the Link Quality by the noise samples. */
1473 for (i = 0; i < 8; i++) {
1474 for (j = 0; j < 4; j++)
1475 average += dev->noisecalc.samples[i][j];
1481 tmp = b43_shm_read16(dev, B43_SHM_SHARED, 0x40C);
1482 tmp = (tmp / 128) & 0x1F;
1492 dev->stats.link_noise = average;
1493 dev->noisecalc.calculation_running = false;
1497 b43_generate_noise_sample(dev);
1500 static void handle_irq_tbtt_indication(struct b43_wldev *dev)
1502 if (b43_is_mode(dev->wl, NL80211_IFTYPE_AP)) {
1505 if (1 /*FIXME: the last PSpoll frame was sent successfully */ )
1506 b43_power_saving_ctl_bits(dev, 0);
1508 if (b43_is_mode(dev->wl, NL80211_IFTYPE_ADHOC))
1509 dev->dfq_valid = true;
1512 static void handle_irq_atim_end(struct b43_wldev *dev)
1514 if (dev->dfq_valid) {
1515 b43_write32(dev, B43_MMIO_MACCMD,
1516 b43_read32(dev, B43_MMIO_MACCMD)
1517 | B43_MACCMD_DFQ_VALID);
1518 dev->dfq_valid = false;
1522 static void handle_irq_pmq(struct b43_wldev *dev)
1529 tmp = b43_read32(dev, B43_MMIO_PS_STATUS);
1530 if (!(tmp & 0x00000008))
1533 /* 16bit write is odd, but correct. */
1534 b43_write16(dev, B43_MMIO_PS_STATUS, 0x0002);
1537 static void b43_write_template_common(struct b43_wldev *dev,
1538 const u8 *data, u16 size,
1540 u16 shm_size_offset, u8 rate)
1543 struct b43_plcp_hdr4 plcp;
1546 b43_generate_plcp_hdr(&plcp, size + FCS_LEN, rate);
1547 b43_ram_write(dev, ram_offset, le32_to_cpu(plcp.data));
1548 ram_offset += sizeof(u32);
1549 /* The PLCP is 6 bytes long, but we only wrote 4 bytes, yet.
1550 * So leave the first two bytes of the next write blank.
1552 tmp = (u32) (data[0]) << 16;
1553 tmp |= (u32) (data[1]) << 24;
1554 b43_ram_write(dev, ram_offset, tmp);
1555 ram_offset += sizeof(u32);
1556 for (i = 2; i < size; i += sizeof(u32)) {
1557 tmp = (u32) (data[i + 0]);
1559 tmp |= (u32) (data[i + 1]) << 8;
1561 tmp |= (u32) (data[i + 2]) << 16;
1563 tmp |= (u32) (data[i + 3]) << 24;
1564 b43_ram_write(dev, ram_offset + i - 2, tmp);
1566 b43_shm_write16(dev, B43_SHM_SHARED, shm_size_offset,
1567 size + sizeof(struct b43_plcp_hdr6));
1570 /* Check if the use of the antenna that ieee80211 told us to
1571 * use is possible. This will fall back to DEFAULT.
1572 * "antenna_nr" is the antenna identifier we got from ieee80211. */
1573 u8 b43_ieee80211_antenna_sanitize(struct b43_wldev *dev,
1578 if (antenna_nr == 0) {
1579 /* Zero means "use default antenna". That's always OK. */
1583 /* Get the mask of available antennas. */
1585 antenna_mask = dev->dev->bus_sprom->ant_available_bg;
1587 antenna_mask = dev->dev->bus_sprom->ant_available_a;
1589 if (!(antenna_mask & (1 << (antenna_nr - 1)))) {
1590 /* This antenna is not available. Fall back to default. */
1597 /* Convert a b43 antenna number value to the PHY TX control value. */
1598 static u16 b43_antenna_to_phyctl(int antenna)
1602 return B43_TXH_PHY_ANT0;
1604 return B43_TXH_PHY_ANT1;
1606 return B43_TXH_PHY_ANT2;
1608 return B43_TXH_PHY_ANT3;
1609 case B43_ANTENNA_AUTO0:
1610 case B43_ANTENNA_AUTO1:
1611 return B43_TXH_PHY_ANT01AUTO;
1617 static void b43_write_beacon_template(struct b43_wldev *dev,
1619 u16 shm_size_offset)
1621 unsigned int i, len, variable_len;
1622 const struct ieee80211_mgmt *bcn;
1624 bool tim_found = false;
1628 struct ieee80211_tx_info *info;
1629 unsigned long flags;
1630 struct sk_buff *beacon_skb;
1632 spin_lock_irqsave(&dev->wl->beacon_lock, flags);
1633 info = IEEE80211_SKB_CB(dev->wl->current_beacon);
1634 rate = ieee80211_get_tx_rate(dev->wl->hw, info)->hw_value;
1635 /* Clone the beacon, so it cannot go away, while we write it to hw. */
1636 beacon_skb = skb_clone(dev->wl->current_beacon, GFP_ATOMIC);
1637 spin_unlock_irqrestore(&dev->wl->beacon_lock, flags);
1640 b43dbg(dev->wl, "Could not upload beacon. "
1641 "Failed to clone beacon skb.");
1645 bcn = (const struct ieee80211_mgmt *)(beacon_skb->data);
1646 len = min_t(size_t, beacon_skb->len,
1647 0x200 - sizeof(struct b43_plcp_hdr6));
1649 b43_write_template_common(dev, (const u8 *)bcn,
1650 len, ram_offset, shm_size_offset, rate);
1652 /* Write the PHY TX control parameters. */
1653 antenna = B43_ANTENNA_DEFAULT;
1654 antenna = b43_antenna_to_phyctl(antenna);
1655 ctl = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_BEACPHYCTL);
1656 /* We can't send beacons with short preamble. Would get PHY errors. */
1657 ctl &= ~B43_TXH_PHY_SHORTPRMBL;
1658 ctl &= ~B43_TXH_PHY_ANT;
1659 ctl &= ~B43_TXH_PHY_ENC;
1661 if (b43_is_cck_rate(rate))
1662 ctl |= B43_TXH_PHY_ENC_CCK;
1664 ctl |= B43_TXH_PHY_ENC_OFDM;
1665 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_BEACPHYCTL, ctl);
1667 /* Find the position of the TIM and the DTIM_period value
1668 * and write them to SHM. */
1669 ie = bcn->u.beacon.variable;
1670 variable_len = len - offsetof(struct ieee80211_mgmt, u.beacon.variable);
1671 for (i = 0; i < variable_len - 2; ) {
1672 uint8_t ie_id, ie_len;
1679 /* This is the TIM Information Element */
1681 /* Check whether the ie_len is in the beacon data range. */
1682 if (variable_len < ie_len + 2 + i)
1684 /* A valid TIM is at least 4 bytes long. */
1689 tim_position = sizeof(struct b43_plcp_hdr6);
1690 tim_position += offsetof(struct ieee80211_mgmt, u.beacon.variable);
1693 dtim_period = ie[i + 3];
1695 b43_shm_write16(dev, B43_SHM_SHARED,
1696 B43_SHM_SH_TIMBPOS, tim_position);
1697 b43_shm_write16(dev, B43_SHM_SHARED,
1698 B43_SHM_SH_DTIMPER, dtim_period);
1705 * If ucode wants to modify TIM do it behind the beacon, this
1706 * will happen, for example, when doing mesh networking.
1708 b43_shm_write16(dev, B43_SHM_SHARED,
1710 len + sizeof(struct b43_plcp_hdr6));
1711 b43_shm_write16(dev, B43_SHM_SHARED,
1712 B43_SHM_SH_DTIMPER, 0);
1714 b43dbg(dev->wl, "Updated beacon template at 0x%x\n", ram_offset);
1716 dev_kfree_skb_any(beacon_skb);
1719 static void b43_upload_beacon0(struct b43_wldev *dev)
1721 struct b43_wl *wl = dev->wl;
1723 if (wl->beacon0_uploaded)
1725 b43_write_beacon_template(dev, B43_SHM_SH_BT_BASE0, B43_SHM_SH_BTL0);
1726 wl->beacon0_uploaded = true;
1729 static void b43_upload_beacon1(struct b43_wldev *dev)
1731 struct b43_wl *wl = dev->wl;
1733 if (wl->beacon1_uploaded)
1735 b43_write_beacon_template(dev, B43_SHM_SH_BT_BASE1, B43_SHM_SH_BTL1);
1736 wl->beacon1_uploaded = true;
1739 static void handle_irq_beacon(struct b43_wldev *dev)
1741 struct b43_wl *wl = dev->wl;
1742 u32 cmd, beacon0_valid, beacon1_valid;
1744 if (!b43_is_mode(wl, NL80211_IFTYPE_AP) &&
1745 !b43_is_mode(wl, NL80211_IFTYPE_MESH_POINT) &&
1746 !b43_is_mode(wl, NL80211_IFTYPE_ADHOC))
1749 /* This is the bottom half of the asynchronous beacon update. */
1751 /* Ignore interrupt in the future. */
1752 dev->irq_mask &= ~B43_IRQ_BEACON;
1754 cmd = b43_read32(dev, B43_MMIO_MACCMD);
1755 beacon0_valid = (cmd & B43_MACCMD_BEACON0_VALID);
1756 beacon1_valid = (cmd & B43_MACCMD_BEACON1_VALID);
1758 /* Schedule interrupt manually, if busy. */
1759 if (beacon0_valid && beacon1_valid) {
1760 b43_write32(dev, B43_MMIO_GEN_IRQ_REASON, B43_IRQ_BEACON);
1761 dev->irq_mask |= B43_IRQ_BEACON;
1765 if (unlikely(wl->beacon_templates_virgin)) {
1766 /* We never uploaded a beacon before.
1767 * Upload both templates now, but only mark one valid. */
1768 wl->beacon_templates_virgin = false;
1769 b43_upload_beacon0(dev);
1770 b43_upload_beacon1(dev);
1771 cmd = b43_read32(dev, B43_MMIO_MACCMD);
1772 cmd |= B43_MACCMD_BEACON0_VALID;
1773 b43_write32(dev, B43_MMIO_MACCMD, cmd);
1775 if (!beacon0_valid) {
1776 b43_upload_beacon0(dev);
1777 cmd = b43_read32(dev, B43_MMIO_MACCMD);
1778 cmd |= B43_MACCMD_BEACON0_VALID;
1779 b43_write32(dev, B43_MMIO_MACCMD, cmd);
1780 } else if (!beacon1_valid) {
1781 b43_upload_beacon1(dev);
1782 cmd = b43_read32(dev, B43_MMIO_MACCMD);
1783 cmd |= B43_MACCMD_BEACON1_VALID;
1784 b43_write32(dev, B43_MMIO_MACCMD, cmd);
1789 static void b43_do_beacon_update_trigger_work(struct b43_wldev *dev)
1791 u32 old_irq_mask = dev->irq_mask;
1793 /* update beacon right away or defer to irq */
1794 handle_irq_beacon(dev);
1795 if (old_irq_mask != dev->irq_mask) {
1796 /* The handler updated the IRQ mask. */
1797 B43_WARN_ON(!dev->irq_mask);
1798 if (b43_read32(dev, B43_MMIO_GEN_IRQ_MASK)) {
1799 b43_write32(dev, B43_MMIO_GEN_IRQ_MASK, dev->irq_mask);
1801 /* Device interrupts are currently disabled. That means
1802 * we just ran the hardirq handler and scheduled the
1803 * IRQ thread. The thread will write the IRQ mask when
1804 * it finished, so there's nothing to do here. Writing
1805 * the mask _here_ would incorrectly re-enable IRQs. */
1810 static void b43_beacon_update_trigger_work(struct work_struct *work)
1812 struct b43_wl *wl = container_of(work, struct b43_wl,
1813 beacon_update_trigger);
1814 struct b43_wldev *dev;
1816 mutex_lock(&wl->mutex);
1817 dev = wl->current_dev;
1818 if (likely(dev && (b43_status(dev) >= B43_STAT_INITIALIZED))) {
1819 if (b43_bus_host_is_sdio(dev->dev)) {
1820 /* wl->mutex is enough. */
1821 b43_do_beacon_update_trigger_work(dev);
1823 spin_lock_irq(&wl->hardirq_lock);
1824 b43_do_beacon_update_trigger_work(dev);
1825 spin_unlock_irq(&wl->hardirq_lock);
1828 mutex_unlock(&wl->mutex);
1831 /* Asynchronously update the packet templates in template RAM. */
1832 static void b43_update_templates(struct b43_wl *wl)
1834 struct sk_buff *beacon, *old_beacon;
1835 unsigned long flags;
1837 /* This is the top half of the asynchronous beacon update.
1838 * The bottom half is the beacon IRQ.
1839 * Beacon update must be asynchronous to avoid sending an
1840 * invalid beacon. This can happen for example, if the firmware
1841 * transmits a beacon while we are updating it. */
1843 /* We could modify the existing beacon and set the aid bit in
1844 * the TIM field, but that would probably require resizing and
1845 * moving of data within the beacon template.
1846 * Simply request a new beacon and let mac80211 do the hard work. */
1847 beacon = ieee80211_beacon_get(wl->hw, wl->vif);
1848 if (unlikely(!beacon))
1851 spin_lock_irqsave(&wl->beacon_lock, flags);
1852 old_beacon = wl->current_beacon;
1853 wl->current_beacon = beacon;
1854 wl->beacon0_uploaded = false;
1855 wl->beacon1_uploaded = false;
1856 spin_unlock_irqrestore(&wl->beacon_lock, flags);
1858 ieee80211_queue_work(wl->hw, &wl->beacon_update_trigger);
1861 dev_kfree_skb_any(old_beacon);
1864 static void b43_set_beacon_int(struct b43_wldev *dev, u16 beacon_int)
1867 if (dev->dev->core_rev >= 3) {
1868 b43_write32(dev, B43_MMIO_TSF_CFP_REP, (beacon_int << 16));
1869 b43_write32(dev, B43_MMIO_TSF_CFP_START, (beacon_int << 10));
1871 b43_write16(dev, 0x606, (beacon_int >> 6));
1872 b43_write16(dev, 0x610, beacon_int);
1874 b43_time_unlock(dev);
1875 b43dbg(dev->wl, "Set beacon interval to %u\n", beacon_int);
1878 static void b43_handle_firmware_panic(struct b43_wldev *dev)
1882 /* Read the register that contains the reason code for the panic. */
1883 reason = b43_shm_read16(dev, B43_SHM_SCRATCH, B43_FWPANIC_REASON_REG);
1884 b43err(dev->wl, "Whoopsy, firmware panic! Reason: %u\n", reason);
1888 b43dbg(dev->wl, "The panic reason is unknown.\n");
1890 case B43_FWPANIC_DIE:
1891 /* Do not restart the controller or firmware.
1892 * The device is nonfunctional from now on.
1893 * Restarting would result in this panic to trigger again,
1894 * so we avoid that recursion. */
1896 case B43_FWPANIC_RESTART:
1897 b43_controller_restart(dev, "Microcode panic");
1902 static void handle_irq_ucode_debug(struct b43_wldev *dev)
1904 unsigned int i, cnt;
1905 u16 reason, marker_id, marker_line;
1908 /* The proprietary firmware doesn't have this IRQ. */
1909 if (!dev->fw.opensource)
1912 /* Read the register that contains the reason code for this IRQ. */
1913 reason = b43_shm_read16(dev, B43_SHM_SCRATCH, B43_DEBUGIRQ_REASON_REG);
1916 case B43_DEBUGIRQ_PANIC:
1917 b43_handle_firmware_panic(dev);
1919 case B43_DEBUGIRQ_DUMP_SHM:
1921 break; /* Only with driver debugging enabled. */
1922 buf = kmalloc(4096, GFP_ATOMIC);
1924 b43dbg(dev->wl, "SHM-dump: Failed to allocate memory\n");
1927 for (i = 0; i < 4096; i += 2) {
1928 u16 tmp = b43_shm_read16(dev, B43_SHM_SHARED, i);
1929 buf[i / 2] = cpu_to_le16(tmp);
1931 b43info(dev->wl, "Shared memory dump:\n");
1932 print_hex_dump(KERN_INFO, "", DUMP_PREFIX_OFFSET,
1933 16, 2, buf, 4096, 1);
1936 case B43_DEBUGIRQ_DUMP_REGS:
1938 break; /* Only with driver debugging enabled. */
1939 b43info(dev->wl, "Microcode register dump:\n");
1940 for (i = 0, cnt = 0; i < 64; i++) {
1941 u16 tmp = b43_shm_read16(dev, B43_SHM_SCRATCH, i);
1944 printk("r%02u: 0x%04X ", i, tmp);
1953 case B43_DEBUGIRQ_MARKER:
1955 break; /* Only with driver debugging enabled. */
1956 marker_id = b43_shm_read16(dev, B43_SHM_SCRATCH,
1958 marker_line = b43_shm_read16(dev, B43_SHM_SCRATCH,
1959 B43_MARKER_LINE_REG);
1960 b43info(dev->wl, "The firmware just executed the MARKER(%u) "
1961 "at line number %u\n",
1962 marker_id, marker_line);
1965 b43dbg(dev->wl, "Debug-IRQ triggered for unknown reason: %u\n",
1969 /* Acknowledge the debug-IRQ, so the firmware can continue. */
1970 b43_shm_write16(dev, B43_SHM_SCRATCH,
1971 B43_DEBUGIRQ_REASON_REG, B43_DEBUGIRQ_ACK);
1974 static void b43_do_interrupt_thread(struct b43_wldev *dev)
1977 u32 dma_reason[ARRAY_SIZE(dev->dma_reason)];
1978 u32 merged_dma_reason = 0;
1981 if (unlikely(b43_status(dev) != B43_STAT_STARTED))
1984 reason = dev->irq_reason;
1985 for (i = 0; i < ARRAY_SIZE(dma_reason); i++) {
1986 dma_reason[i] = dev->dma_reason[i];
1987 merged_dma_reason |= dma_reason[i];
1990 if (unlikely(reason & B43_IRQ_MAC_TXERR))
1991 b43err(dev->wl, "MAC transmission error\n");
1993 if (unlikely(reason & B43_IRQ_PHY_TXERR)) {
1994 b43err(dev->wl, "PHY transmission error\n");
1996 if (unlikely(atomic_dec_and_test(&dev->phy.txerr_cnt))) {
1997 atomic_set(&dev->phy.txerr_cnt,
1998 B43_PHY_TX_BADNESS_LIMIT);
1999 b43err(dev->wl, "Too many PHY TX errors, "
2000 "restarting the controller\n");
2001 b43_controller_restart(dev, "PHY TX errors");
2005 if (unlikely(merged_dma_reason & (B43_DMAIRQ_FATALMASK))) {
2007 "Fatal DMA error: 0x%08X, 0x%08X, 0x%08X, 0x%08X, 0x%08X, 0x%08X\n",
2008 dma_reason[0], dma_reason[1],
2009 dma_reason[2], dma_reason[3],
2010 dma_reason[4], dma_reason[5]);
2011 b43err(dev->wl, "This device does not support DMA "
2012 "on your system. It will now be switched to PIO.\n");
2013 /* Fall back to PIO transfers if we get fatal DMA errors! */
2014 dev->use_pio = true;
2015 b43_controller_restart(dev, "DMA error");
2019 if (unlikely(reason & B43_IRQ_UCODE_DEBUG))
2020 handle_irq_ucode_debug(dev);
2021 if (reason & B43_IRQ_TBTT_INDI)
2022 handle_irq_tbtt_indication(dev);
2023 if (reason & B43_IRQ_ATIM_END)
2024 handle_irq_atim_end(dev);
2025 if (reason & B43_IRQ_BEACON)
2026 handle_irq_beacon(dev);
2027 if (reason & B43_IRQ_PMQ)
2028 handle_irq_pmq(dev);
2029 if (reason & B43_IRQ_TXFIFO_FLUSH_OK)
2031 if (reason & B43_IRQ_NOISESAMPLE_OK)
2032 handle_irq_noise(dev);
2034 /* Check the DMA reason registers for received data. */
2035 if (dma_reason[0] & B43_DMAIRQ_RDESC_UFLOW) {
2037 b43warn(dev->wl, "RX descriptor underrun\n");
2038 b43_dma_handle_rx_overflow(dev->dma.rx_ring);
2040 if (dma_reason[0] & B43_DMAIRQ_RX_DONE) {
2041 if (b43_using_pio_transfers(dev))
2042 b43_pio_rx(dev->pio.rx_queue);
2044 b43_dma_rx(dev->dma.rx_ring);
2046 B43_WARN_ON(dma_reason[1] & B43_DMAIRQ_RX_DONE);
2047 B43_WARN_ON(dma_reason[2] & B43_DMAIRQ_RX_DONE);
2048 B43_WARN_ON(dma_reason[3] & B43_DMAIRQ_RX_DONE);
2049 B43_WARN_ON(dma_reason[4] & B43_DMAIRQ_RX_DONE);
2050 B43_WARN_ON(dma_reason[5] & B43_DMAIRQ_RX_DONE);
2052 if (reason & B43_IRQ_TX_OK)
2053 handle_irq_transmit_status(dev);
2055 /* Re-enable interrupts on the device by restoring the current interrupt mask. */
2056 b43_write32(dev, B43_MMIO_GEN_IRQ_MASK, dev->irq_mask);
2059 if (b43_debug(dev, B43_DBG_VERBOSESTATS)) {
2061 for (i = 0; i < ARRAY_SIZE(dev->irq_bit_count); i++) {
2062 if (reason & (1 << i))
2063 dev->irq_bit_count[i]++;
2069 /* Interrupt thread handler. Handles device interrupts in thread context. */
2070 static irqreturn_t b43_interrupt_thread_handler(int irq, void *dev_id)
2072 struct b43_wldev *dev = dev_id;
2074 mutex_lock(&dev->wl->mutex);
2075 b43_do_interrupt_thread(dev);
2076 mutex_unlock(&dev->wl->mutex);
2081 static irqreturn_t b43_do_interrupt(struct b43_wldev *dev)
2085 /* This code runs under wl->hardirq_lock, but _only_ on non-SDIO busses.
2086 * On SDIO, this runs under wl->mutex. */
2088 reason = b43_read32(dev, B43_MMIO_GEN_IRQ_REASON);
2089 if (reason == 0xffffffff) /* shared IRQ */
2091 reason &= dev->irq_mask;
2095 dev->dma_reason[0] = b43_read32(dev, B43_MMIO_DMA0_REASON)
2097 dev->dma_reason[1] = b43_read32(dev, B43_MMIO_DMA1_REASON)
2099 dev->dma_reason[2] = b43_read32(dev, B43_MMIO_DMA2_REASON)
2101 dev->dma_reason[3] = b43_read32(dev, B43_MMIO_DMA3_REASON)
2103 dev->dma_reason[4] = b43_read32(dev, B43_MMIO_DMA4_REASON)
2106 dev->dma_reason[5] = b43_read32(dev, B43_MMIO_DMA5_REASON)
2110 /* ACK the interrupt. */
2111 b43_write32(dev, B43_MMIO_GEN_IRQ_REASON, reason);
2112 b43_write32(dev, B43_MMIO_DMA0_REASON, dev->dma_reason[0]);
2113 b43_write32(dev, B43_MMIO_DMA1_REASON, dev->dma_reason[1]);
2114 b43_write32(dev, B43_MMIO_DMA2_REASON, dev->dma_reason[2]);
2115 b43_write32(dev, B43_MMIO_DMA3_REASON, dev->dma_reason[3]);
2116 b43_write32(dev, B43_MMIO_DMA4_REASON, dev->dma_reason[4]);
2118 b43_write32(dev, B43_MMIO_DMA5_REASON, dev->dma_reason[5]);
2121 /* Disable IRQs on the device. The IRQ thread handler will re-enable them. */
2122 b43_write32(dev, B43_MMIO_GEN_IRQ_MASK, 0);
2123 /* Save the reason bitmasks for the IRQ thread handler. */
2124 dev->irq_reason = reason;
2126 return IRQ_WAKE_THREAD;
2129 /* Interrupt handler top-half. This runs with interrupts disabled. */
2130 static irqreturn_t b43_interrupt_handler(int irq, void *dev_id)
2132 struct b43_wldev *dev = dev_id;
2135 if (unlikely(b43_status(dev) < B43_STAT_STARTED))
2138 spin_lock(&dev->wl->hardirq_lock);
2139 ret = b43_do_interrupt(dev);
2140 spin_unlock(&dev->wl->hardirq_lock);
2145 /* SDIO interrupt handler. This runs in process context. */
2146 static void b43_sdio_interrupt_handler(struct b43_wldev *dev)
2148 struct b43_wl *wl = dev->wl;
2151 mutex_lock(&wl->mutex);
2153 ret = b43_do_interrupt(dev);
2154 if (ret == IRQ_WAKE_THREAD)
2155 b43_do_interrupt_thread(dev);
2157 mutex_unlock(&wl->mutex);
2160 void b43_do_release_fw(struct b43_firmware_file *fw)
2162 release_firmware(fw->data);
2164 fw->filename = NULL;
2167 static void b43_release_firmware(struct b43_wldev *dev)
2169 complete(&dev->fw_load_complete);
2170 b43_do_release_fw(&dev->fw.ucode);
2171 b43_do_release_fw(&dev->fw.pcm);
2172 b43_do_release_fw(&dev->fw.initvals);
2173 b43_do_release_fw(&dev->fw.initvals_band);
2176 static void b43_print_fw_helptext(struct b43_wl *wl, bool error)
2180 "http://wireless.kernel.org/en/users/Drivers/b43#devicefirmware " \
2181 "and download the correct firmware for this driver version. " \
2182 "Please carefully read all instructions on this website.\n";
2190 static void b43_fw_cb(const struct firmware *firmware, void *context)
2192 struct b43_request_fw_context *ctx = context;
2194 ctx->blob = firmware;
2195 complete(&ctx->dev->fw_load_complete);
2198 int b43_do_request_fw(struct b43_request_fw_context *ctx,
2200 struct b43_firmware_file *fw, bool async)
2202 struct b43_fw_header *hdr;
2207 /* Don't fetch anything. Free possibly cached firmware. */
2208 /* FIXME: We should probably keep it anyway, to save some headache
2209 * on suspend/resume with multiband devices. */
2210 b43_do_release_fw(fw);
2214 if ((fw->type == ctx->req_type) &&
2215 (strcmp(fw->filename, name) == 0))
2216 return 0; /* Already have this fw. */
2217 /* Free the cached firmware first. */
2218 /* FIXME: We should probably do this later after we successfully
2219 * got the new fw. This could reduce headache with multiband devices.
2220 * We could also redesign this to cache the firmware for all possible
2221 * bands all the time. */
2222 b43_do_release_fw(fw);
2225 switch (ctx->req_type) {
2226 case B43_FWTYPE_PROPRIETARY:
2227 snprintf(ctx->fwname, sizeof(ctx->fwname),
2229 modparam_fwpostfix, name);
2231 case B43_FWTYPE_OPENSOURCE:
2232 snprintf(ctx->fwname, sizeof(ctx->fwname),
2234 modparam_fwpostfix, name);
2241 /* do this part asynchronously */
2242 init_completion(&ctx->dev->fw_load_complete);
2243 err = request_firmware_nowait(THIS_MODULE, 1, ctx->fwname,
2244 ctx->dev->dev->dev, GFP_KERNEL,
2247 pr_err("Unable to load firmware\n");
2250 wait_for_completion(&ctx->dev->fw_load_complete);
2253 /* On some ARM systems, the async request will fail, but the next sync
2254 * request works. For this reason, we fall through here
2257 err = request_firmware(&ctx->blob, ctx->fwname,
2258 ctx->dev->dev->dev);
2259 if (err == -ENOENT) {
2260 snprintf(ctx->errors[ctx->req_type],
2261 sizeof(ctx->errors[ctx->req_type]),
2262 "Firmware file \"%s\" not found\n",
2266 snprintf(ctx->errors[ctx->req_type],
2267 sizeof(ctx->errors[ctx->req_type]),
2268 "Firmware file \"%s\" request failed (err=%d)\n",
2273 if (ctx->blob->size < sizeof(struct b43_fw_header))
2275 hdr = (struct b43_fw_header *)(ctx->blob->data);
2276 switch (hdr->type) {
2277 case B43_FW_TYPE_UCODE:
2278 case B43_FW_TYPE_PCM:
2279 size = be32_to_cpu(hdr->size);
2280 if (size != ctx->blob->size - sizeof(struct b43_fw_header))
2283 case B43_FW_TYPE_IV:
2291 fw->data = ctx->blob;
2292 fw->filename = name;
2293 fw->type = ctx->req_type;
2298 snprintf(ctx->errors[ctx->req_type],
2299 sizeof(ctx->errors[ctx->req_type]),
2300 "Firmware file \"%s\" format error.\n", ctx->fwname);
2301 release_firmware(ctx->blob);
2306 /* http://bcm-v4.sipsolutions.net/802.11/Init/Firmware */
2307 static int b43_try_request_fw(struct b43_request_fw_context *ctx)
2309 struct b43_wldev *dev = ctx->dev;
2310 struct b43_firmware *fw = &ctx->dev->fw;
2311 struct b43_phy *phy = &dev->phy;
2312 const u8 rev = ctx->dev->dev->core_rev;
2313 const char *filename;
2320 if (phy->type == B43_PHYTYPE_AC)
2321 filename = "ucode42";
2324 if (phy->type == B43_PHYTYPE_AC)
2325 filename = "ucode40";
2328 if (phy->type == B43_PHYTYPE_LCN40)
2329 filename = "ucode33_lcn40";
2332 if (phy->type == B43_PHYTYPE_N)
2333 filename = "ucode30_mimo";
2336 if (phy->type == B43_PHYTYPE_HT)
2337 filename = "ucode29_mimo";
2340 if (phy->type == B43_PHYTYPE_HT)
2341 filename = "ucode26_mimo";
2345 if (phy->type == B43_PHYTYPE_N)
2346 filename = "ucode25_mimo";
2347 else if (phy->type == B43_PHYTYPE_LCN)
2348 filename = "ucode25_lcn";
2351 if (phy->type == B43_PHYTYPE_LCN)
2352 filename = "ucode24_lcn";
2355 if (phy->type == B43_PHYTYPE_N)
2356 filename = "ucode16_mimo";
2359 if (phy->type == B43_PHYTYPE_N)
2360 filename = "ucode16_mimo";
2361 else if (phy->type == B43_PHYTYPE_LP)
2362 filename = "ucode16_lp";
2365 filename = "ucode15";
2368 filename = "ucode14";
2371 filename = "ucode13";
2374 filename = "ucode11";
2377 filename = "ucode5";
2382 err = b43_do_request_fw(ctx, filename, &fw->ucode, true);
2387 if ((rev >= 5) && (rev <= 10))
2393 fw->pcm_request_failed = false;
2394 err = b43_do_request_fw(ctx, filename, &fw->pcm, false);
2395 if (err == -ENOENT) {
2396 /* We did not find a PCM file? Not fatal, but
2397 * core rev <= 10 must do without hwcrypto then. */
2398 fw->pcm_request_failed = true;
2404 switch (dev->phy.type) {
2407 filename = "b0g0initvals13";
2408 else if (rev >= 5 && rev <= 10)
2409 filename = "b0g0initvals5";
2413 filename = "n16initvals30";
2414 else if (rev == 28 || rev == 25)
2415 filename = "n0initvals25";
2417 filename = "n0initvals24";
2419 filename = "n0initvals16"; /* What about n0initvals22? */
2420 else if (rev >= 16 && rev <= 18)
2421 filename = "n0initvals16";
2422 else if (rev >= 11 && rev <= 12)
2423 filename = "n0initvals11";
2425 case B43_PHYTYPE_LP:
2426 if (rev >= 16 && rev <= 18)
2427 filename = "lp0initvals16";
2429 filename = "lp0initvals15";
2431 filename = "lp0initvals14";
2433 filename = "lp0initvals13";
2435 case B43_PHYTYPE_HT:
2437 filename = "ht0initvals29";
2439 filename = "ht0initvals26";
2441 case B43_PHYTYPE_LCN:
2443 filename = "lcn0initvals24";
2445 case B43_PHYTYPE_LCN40:
2447 filename = "lcn400initvals33";
2449 case B43_PHYTYPE_AC:
2451 filename = "ac1initvals42";
2453 filename = "ac0initvals40";
2457 goto err_no_initvals;
2458 err = b43_do_request_fw(ctx, filename, &fw->initvals, false);
2462 /* Get bandswitch initvals */
2464 switch (dev->phy.type) {
2467 filename = "b0g0bsinitvals13";
2468 else if (rev >= 5 && rev <= 10)
2469 filename = "b0g0bsinitvals5";
2473 filename = "n16bsinitvals30";
2474 else if (rev == 28 || rev == 25)
2475 filename = "n0bsinitvals25";
2477 filename = "n0bsinitvals24";
2479 filename = "n0bsinitvals16"; /* What about n0bsinitvals22? */
2480 else if (rev >= 16 && rev <= 18)
2481 filename = "n0bsinitvals16";
2482 else if (rev >= 11 && rev <= 12)
2483 filename = "n0bsinitvals11";
2485 case B43_PHYTYPE_LP:
2486 if (rev >= 16 && rev <= 18)
2487 filename = "lp0bsinitvals16";
2489 filename = "lp0bsinitvals15";
2491 filename = "lp0bsinitvals14";
2493 filename = "lp0bsinitvals13";
2495 case B43_PHYTYPE_HT:
2497 filename = "ht0bsinitvals29";
2499 filename = "ht0bsinitvals26";
2501 case B43_PHYTYPE_LCN:
2503 filename = "lcn0bsinitvals24";
2505 case B43_PHYTYPE_LCN40:
2507 filename = "lcn400bsinitvals33";
2509 case B43_PHYTYPE_AC:
2511 filename = "ac1bsinitvals42";
2513 filename = "ac0bsinitvals40";
2517 goto err_no_initvals;
2518 err = b43_do_request_fw(ctx, filename, &fw->initvals_band, false);
2522 fw->opensource = (ctx->req_type == B43_FWTYPE_OPENSOURCE);
2527 err = ctx->fatal_failure = -EOPNOTSUPP;
2528 b43err(dev->wl, "The driver does not know which firmware (ucode) "
2529 "is required for your device (wl-core rev %u)\n", rev);
2533 err = ctx->fatal_failure = -EOPNOTSUPP;
2534 b43err(dev->wl, "The driver does not know which firmware (PCM) "
2535 "is required for your device (wl-core rev %u)\n", rev);
2539 err = ctx->fatal_failure = -EOPNOTSUPP;
2540 b43err(dev->wl, "The driver does not know which firmware (initvals) "
2541 "is required for your device (wl-core rev %u)\n", rev);
2545 /* We failed to load this firmware image. The error message
2546 * already is in ctx->errors. Return and let our caller decide
2551 b43_release_firmware(dev);
2555 static int b43_one_core_attach(struct b43_bus_dev *dev, struct b43_wl *wl);
2556 static void b43_one_core_detach(struct b43_bus_dev *dev);
2557 static int b43_rng_init(struct b43_wl *wl);
2559 static void b43_request_firmware(struct work_struct *work)
2561 struct b43_wl *wl = container_of(work,
2562 struct b43_wl, firmware_load);
2563 struct b43_wldev *dev = wl->current_dev;
2564 struct b43_request_fw_context *ctx;
2569 ctx = kzalloc(sizeof(*ctx), GFP_KERNEL);
2574 ctx->req_type = B43_FWTYPE_PROPRIETARY;
2575 err = b43_try_request_fw(ctx);
2577 goto start_ieee80211; /* Successfully loaded it. */
2578 /* Was fw version known? */
2579 if (ctx->fatal_failure)
2582 /* proprietary fw not found, try open source */
2583 ctx->req_type = B43_FWTYPE_OPENSOURCE;
2584 err = b43_try_request_fw(ctx);
2586 goto start_ieee80211; /* Successfully loaded it. */
2587 if(ctx->fatal_failure)
2590 /* Could not find a usable firmware. Print the errors. */
2591 for (i = 0; i < B43_NR_FWTYPES; i++) {
2592 errmsg = ctx->errors[i];
2594 b43err(dev->wl, "%s", errmsg);
2596 b43_print_fw_helptext(dev->wl, 1);
2600 wl->hw->queues = B43_QOS_QUEUE_NUM;
2601 if (!modparam_qos || dev->fw.opensource)
2604 err = ieee80211_register_hw(wl->hw);
2606 goto err_one_core_detach;
2607 wl->hw_registered = true;
2608 b43_leds_register(wl->current_dev);
2610 /* Register HW RNG driver */
2615 err_one_core_detach:
2616 b43_one_core_detach(dev->dev);
2622 static int b43_upload_microcode(struct b43_wldev *dev)
2624 struct wiphy *wiphy = dev->wl->hw->wiphy;
2625 const size_t hdr_len = sizeof(struct b43_fw_header);
2627 unsigned int i, len;
2628 u16 fwrev, fwpatch, fwdate, fwtime;
2632 /* Jump the microcode PSM to offset 0 */
2633 macctl = b43_read32(dev, B43_MMIO_MACCTL);
2634 B43_WARN_ON(macctl & B43_MACCTL_PSM_RUN);
2635 macctl |= B43_MACCTL_PSM_JMP0;
2636 b43_write32(dev, B43_MMIO_MACCTL, macctl);
2637 /* Zero out all microcode PSM registers and shared memory. */
2638 for (i = 0; i < 64; i++)
2639 b43_shm_write16(dev, B43_SHM_SCRATCH, i, 0);
2640 for (i = 0; i < 4096; i += 2)
2641 b43_shm_write16(dev, B43_SHM_SHARED, i, 0);
2643 /* Upload Microcode. */
2644 data = (__be32 *) (dev->fw.ucode.data->data + hdr_len);
2645 len = (dev->fw.ucode.data->size - hdr_len) / sizeof(__be32);
2646 b43_shm_control_word(dev, B43_SHM_UCODE | B43_SHM_AUTOINC_W, 0x0000);
2647 for (i = 0; i < len; i++) {
2648 b43_write32(dev, B43_MMIO_SHM_DATA, be32_to_cpu(data[i]));
2652 if (dev->fw.pcm.data) {
2653 /* Upload PCM data. */
2654 data = (__be32 *) (dev->fw.pcm.data->data + hdr_len);
2655 len = (dev->fw.pcm.data->size - hdr_len) / sizeof(__be32);
2656 b43_shm_control_word(dev, B43_SHM_HW, 0x01EA);
2657 b43_write32(dev, B43_MMIO_SHM_DATA, 0x00004000);
2658 /* No need for autoinc bit in SHM_HW */
2659 b43_shm_control_word(dev, B43_SHM_HW, 0x01EB);
2660 for (i = 0; i < len; i++) {
2661 b43_write32(dev, B43_MMIO_SHM_DATA, be32_to_cpu(data[i]));
2666 b43_write32(dev, B43_MMIO_GEN_IRQ_REASON, B43_IRQ_ALL);
2668 /* Start the microcode PSM */
2669 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_PSM_JMP0,
2670 B43_MACCTL_PSM_RUN);
2672 /* Wait for the microcode to load and respond */
2675 tmp = b43_read32(dev, B43_MMIO_GEN_IRQ_REASON);
2676 if (tmp == B43_IRQ_MAC_SUSPENDED)
2680 b43err(dev->wl, "Microcode not responding\n");
2681 b43_print_fw_helptext(dev->wl, 1);
2687 b43_read32(dev, B43_MMIO_GEN_IRQ_REASON); /* dummy read */
2689 /* Get and check the revisions. */
2690 fwrev = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_UCODEREV);
2691 fwpatch = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_UCODEPATCH);
2692 fwdate = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_UCODEDATE);
2693 fwtime = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_UCODETIME);
2695 if (fwrev <= 0x128) {
2696 b43err(dev->wl, "YOUR FIRMWARE IS TOO OLD. Firmware from "
2697 "binary drivers older than version 4.x is unsupported. "
2698 "You must upgrade your firmware files.\n");
2699 b43_print_fw_helptext(dev->wl, 1);
2703 dev->fw.rev = fwrev;
2704 dev->fw.patch = fwpatch;
2705 if (dev->fw.rev >= 598)
2706 dev->fw.hdr_format = B43_FW_HDR_598;
2707 else if (dev->fw.rev >= 410)
2708 dev->fw.hdr_format = B43_FW_HDR_410;
2710 dev->fw.hdr_format = B43_FW_HDR_351;
2711 WARN_ON(dev->fw.opensource != (fwdate == 0xFFFF));
2713 dev->qos_enabled = dev->wl->hw->queues > 1;
2714 /* Default to firmware/hardware crypto acceleration. */
2715 dev->hwcrypto_enabled = true;
2717 if (dev->fw.opensource) {
2720 /* Patchlevel info is encoded in the "time" field. */
2721 dev->fw.patch = fwtime;
2722 b43info(dev->wl, "Loading OpenSource firmware version %u.%u\n",
2723 dev->fw.rev, dev->fw.patch);
2725 fwcapa = b43_fwcapa_read(dev);
2726 if (!(fwcapa & B43_FWCAPA_HWCRYPTO) || dev->fw.pcm_request_failed) {
2727 b43info(dev->wl, "Hardware crypto acceleration not supported by firmware\n");
2728 /* Disable hardware crypto and fall back to software crypto. */
2729 dev->hwcrypto_enabled = false;
2731 /* adding QoS support should use an offline discovery mechanism */
2732 WARN(fwcapa & B43_FWCAPA_QOS, "QoS in OpenFW not supported\n");
2734 b43info(dev->wl, "Loading firmware version %u.%u "
2735 "(20%.2i-%.2i-%.2i %.2i:%.2i:%.2i)\n",
2737 (fwdate >> 12) & 0xF, (fwdate >> 8) & 0xF, fwdate & 0xFF,
2738 (fwtime >> 11) & 0x1F, (fwtime >> 5) & 0x3F, fwtime & 0x1F);
2739 if (dev->fw.pcm_request_failed) {
2740 b43warn(dev->wl, "No \"pcm5.fw\" firmware file found. "
2741 "Hardware accelerated cryptography is disabled.\n");
2742 b43_print_fw_helptext(dev->wl, 0);
2746 snprintf(wiphy->fw_version, sizeof(wiphy->fw_version), "%u.%u",
2747 dev->fw.rev, dev->fw.patch);
2748 wiphy->hw_version = dev->dev->core_id;
2750 if (dev->fw.hdr_format == B43_FW_HDR_351) {
2751 /* We're over the deadline, but we keep support for old fw
2752 * until it turns out to be in major conflict with something new. */
2753 b43warn(dev->wl, "You are using an old firmware image. "
2754 "Support for old firmware will be removed soon "
2755 "(official deadline was July 2008).\n");
2756 b43_print_fw_helptext(dev->wl, 0);
2762 /* Stop the microcode PSM. */
2763 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_PSM_RUN,
2764 B43_MACCTL_PSM_JMP0);
2769 static int b43_write_initvals(struct b43_wldev *dev,
2770 const struct b43_iv *ivals,
2774 const struct b43_iv *iv;
2779 BUILD_BUG_ON(sizeof(struct b43_iv) != 6);
2781 for (i = 0; i < count; i++) {
2782 if (array_size < sizeof(iv->offset_size))
2784 array_size -= sizeof(iv->offset_size);
2785 offset = be16_to_cpu(iv->offset_size);
2786 bit32 = !!(offset & B43_IV_32BIT);
2787 offset &= B43_IV_OFFSET_MASK;
2788 if (offset >= 0x1000)
2793 if (array_size < sizeof(iv->data.d32))
2795 array_size -= sizeof(iv->data.d32);
2797 value = get_unaligned_be32(&iv->data.d32);
2798 b43_write32(dev, offset, value);
2800 iv = (const struct b43_iv *)((const uint8_t *)iv +
2806 if (array_size < sizeof(iv->data.d16))
2808 array_size -= sizeof(iv->data.d16);
2810 value = be16_to_cpu(iv->data.d16);
2811 b43_write16(dev, offset, value);
2813 iv = (const struct b43_iv *)((const uint8_t *)iv +
2824 b43err(dev->wl, "Initial Values Firmware file-format error.\n");
2825 b43_print_fw_helptext(dev->wl, 1);
2830 static int b43_upload_initvals(struct b43_wldev *dev)
2832 const size_t hdr_len = sizeof(struct b43_fw_header);
2833 const struct b43_fw_header *hdr;
2834 struct b43_firmware *fw = &dev->fw;
2835 const struct b43_iv *ivals;
2838 hdr = (const struct b43_fw_header *)(fw->initvals.data->data);
2839 ivals = (const struct b43_iv *)(fw->initvals.data->data + hdr_len);
2840 count = be32_to_cpu(hdr->size);
2841 return b43_write_initvals(dev, ivals, count,
2842 fw->initvals.data->size - hdr_len);
2845 static int b43_upload_initvals_band(struct b43_wldev *dev)
2847 const size_t hdr_len = sizeof(struct b43_fw_header);
2848 const struct b43_fw_header *hdr;
2849 struct b43_firmware *fw = &dev->fw;
2850 const struct b43_iv *ivals;
2853 if (!fw->initvals_band.data)
2856 hdr = (const struct b43_fw_header *)(fw->initvals_band.data->data);
2857 ivals = (const struct b43_iv *)(fw->initvals_band.data->data + hdr_len);
2858 count = be32_to_cpu(hdr->size);
2859 return b43_write_initvals(dev, ivals, count,
2860 fw->initvals_band.data->size - hdr_len);
2863 /* Initialize the GPIOs
2864 * http://bcm-specs.sipsolutions.net/GPIO
2867 #ifdef CONFIG_B43_SSB
2868 static struct ssb_device *b43_ssb_gpio_dev(struct b43_wldev *dev)
2870 struct ssb_bus *bus = dev->dev->sdev->bus;
2872 #ifdef CONFIG_SSB_DRIVER_PCICORE
2873 return (bus->chipco.dev ? bus->chipco.dev : bus->pcicore.dev);
2875 return bus->chipco.dev;
2880 static int b43_gpio_init(struct b43_wldev *dev)
2882 #ifdef CONFIG_B43_SSB
2883 struct ssb_device *gpiodev;
2887 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_GPOUTSMSK, 0);
2888 b43_maskset16(dev, B43_MMIO_GPIO_MASK, ~0, 0xF);
2892 if (dev->dev->chip_id == 0x4301) {
2895 } else if (dev->dev->chip_id == 0x5354) {
2896 /* Don't allow overtaking buttons GPIOs */
2897 set &= 0x2; /* 0x2 is LED GPIO on BCM5354 */
2900 if (0 /* FIXME: conditional unknown */ ) {
2901 b43_write16(dev, B43_MMIO_GPIO_MASK,
2902 b43_read16(dev, B43_MMIO_GPIO_MASK)
2904 /* BT Coexistance Input */
2907 /* BT Coexistance Out */
2911 if (dev->dev->bus_sprom->boardflags_lo & B43_BFL_PACTRL) {
2912 /* PA is controlled by gpio 9, let ucode handle it */
2913 b43_write16(dev, B43_MMIO_GPIO_MASK,
2914 b43_read16(dev, B43_MMIO_GPIO_MASK)
2920 switch (dev->dev->bus_type) {
2921 #ifdef CONFIG_B43_BCMA
2923 bcma_chipco_gpio_control(&dev->dev->bdev->bus->drv_cc, mask, set);
2926 #ifdef CONFIG_B43_SSB
2928 gpiodev = b43_ssb_gpio_dev(dev);
2930 ssb_write32(gpiodev, B43_GPIO_CONTROL,
2931 (ssb_read32(gpiodev, B43_GPIO_CONTROL)
2940 /* Turn off all GPIO stuff. Call this on module unload, for example. */
2941 static void b43_gpio_cleanup(struct b43_wldev *dev)
2943 #ifdef CONFIG_B43_SSB
2944 struct ssb_device *gpiodev;
2947 switch (dev->dev->bus_type) {
2948 #ifdef CONFIG_B43_BCMA
2950 bcma_chipco_gpio_control(&dev->dev->bdev->bus->drv_cc, ~0, 0);
2953 #ifdef CONFIG_B43_SSB
2955 gpiodev = b43_ssb_gpio_dev(dev);
2957 ssb_write32(gpiodev, B43_GPIO_CONTROL, 0);
2963 /* http://bcm-specs.sipsolutions.net/EnableMac */
2964 void b43_mac_enable(struct b43_wldev *dev)
2966 if (b43_debug(dev, B43_DBG_FIRMWARE)) {
2969 fwstate = b43_shm_read16(dev, B43_SHM_SHARED,
2970 B43_SHM_SH_UCODESTAT);
2971 if ((fwstate != B43_SHM_SH_UCODESTAT_SUSP) &&
2972 (fwstate != B43_SHM_SH_UCODESTAT_SLEEP)) {
2973 b43err(dev->wl, "b43_mac_enable(): The firmware "
2974 "should be suspended, but current state is %u\n",
2979 dev->mac_suspended--;
2980 B43_WARN_ON(dev->mac_suspended < 0);
2981 if (dev->mac_suspended == 0) {
2982 b43_maskset32(dev, B43_MMIO_MACCTL, ~0, B43_MACCTL_ENABLED);
2983 b43_write32(dev, B43_MMIO_GEN_IRQ_REASON,
2984 B43_IRQ_MAC_SUSPENDED);
2986 b43_read32(dev, B43_MMIO_MACCTL);
2987 b43_read32(dev, B43_MMIO_GEN_IRQ_REASON);
2988 b43_power_saving_ctl_bits(dev, 0);
2992 /* http://bcm-specs.sipsolutions.net/SuspendMAC */
2993 void b43_mac_suspend(struct b43_wldev *dev)
2999 B43_WARN_ON(dev->mac_suspended < 0);
3001 if (dev->mac_suspended == 0) {
3002 b43_power_saving_ctl_bits(dev, B43_PS_AWAKE);
3003 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_ENABLED, 0);
3004 /* force pci to flush the write */
3005 b43_read32(dev, B43_MMIO_MACCTL);
3006 for (i = 35; i; i--) {
3007 tmp = b43_read32(dev, B43_MMIO_GEN_IRQ_REASON);
3008 if (tmp & B43_IRQ_MAC_SUSPENDED)
3012 /* Hm, it seems this will take some time. Use msleep(). */
3013 for (i = 40; i; i--) {
3014 tmp = b43_read32(dev, B43_MMIO_GEN_IRQ_REASON);
3015 if (tmp & B43_IRQ_MAC_SUSPENDED)
3019 b43err(dev->wl, "MAC suspend failed\n");
3022 dev->mac_suspended++;
3025 /* http://bcm-v4.sipsolutions.net/802.11/PHY/N/MacPhyClkSet */
3026 void b43_mac_phy_clock_set(struct b43_wldev *dev, bool on)
3030 switch (dev->dev->bus_type) {
3031 #ifdef CONFIG_B43_BCMA
3033 tmp = bcma_aread32(dev->dev->bdev, BCMA_IOCTL);
3035 tmp |= B43_BCMA_IOCTL_MACPHYCLKEN;
3037 tmp &= ~B43_BCMA_IOCTL_MACPHYCLKEN;
3038 bcma_awrite32(dev->dev->bdev, BCMA_IOCTL, tmp);
3041 #ifdef CONFIG_B43_SSB
3043 tmp = ssb_read32(dev->dev->sdev, SSB_TMSLOW);
3045 tmp |= B43_TMSLOW_MACPHYCLKEN;
3047 tmp &= ~B43_TMSLOW_MACPHYCLKEN;
3048 ssb_write32(dev->dev->sdev, SSB_TMSLOW, tmp);
3054 /* brcms_b_switch_macfreq */
3055 void b43_mac_switch_freq(struct b43_wldev *dev, u8 spurmode)
3057 u16 chip_id = dev->dev->chip_id;
3059 if (chip_id == BCMA_CHIP_ID_BCM4331) {
3061 case 2: /* 168 Mhz: 2^26/168 = 0x61862 */
3062 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x1862);
3063 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0x6);
3065 case 1: /* 164 Mhz: 2^26/164 = 0x63e70 */
3066 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x3e70);
3067 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0x6);
3069 default: /* 160 Mhz: 2^26/160 = 0x66666 */
3070 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x6666);
3071 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0x6);
3074 } else if (chip_id == BCMA_CHIP_ID_BCM43131 ||
3075 chip_id == BCMA_CHIP_ID_BCM43217 ||
3076 chip_id == BCMA_CHIP_ID_BCM43222 ||
3077 chip_id == BCMA_CHIP_ID_BCM43224 ||
3078 chip_id == BCMA_CHIP_ID_BCM43225 ||
3079 chip_id == BCMA_CHIP_ID_BCM43227 ||
3080 chip_id == BCMA_CHIP_ID_BCM43228) {
3082 case 2: /* 126 Mhz */
3083 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x2082);
3084 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0x8);
3086 case 1: /* 123 Mhz */
3087 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x5341);
3088 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0x8);
3090 default: /* 120 Mhz */
3091 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x8889);
3092 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0x8);
3095 } else if (dev->phy.type == B43_PHYTYPE_LCN) {
3097 case 1: /* 82 Mhz */
3098 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x7CE0);
3099 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0xC);
3101 default: /* 80 Mhz */
3102 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0xCCCD);
3103 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0xC);
3109 static void b43_adjust_opmode(struct b43_wldev *dev)
3111 struct b43_wl *wl = dev->wl;
3115 ctl = b43_read32(dev, B43_MMIO_MACCTL);
3116 /* Reset status to STA infrastructure mode. */
3117 ctl &= ~B43_MACCTL_AP;
3118 ctl &= ~B43_MACCTL_KEEP_CTL;
3119 ctl &= ~B43_MACCTL_KEEP_BADPLCP;
3120 ctl &= ~B43_MACCTL_KEEP_BAD;
3121 ctl &= ~B43_MACCTL_PROMISC;
3122 ctl &= ~B43_MACCTL_BEACPROMISC;
3123 ctl |= B43_MACCTL_INFRA;
3125 if (b43_is_mode(wl, NL80211_IFTYPE_AP) ||
3126 b43_is_mode(wl, NL80211_IFTYPE_MESH_POINT))
3127 ctl |= B43_MACCTL_AP;
3128 else if (b43_is_mode(wl, NL80211_IFTYPE_ADHOC))
3129 ctl &= ~B43_MACCTL_INFRA;
3131 if (wl->filter_flags & FIF_CONTROL)
3132 ctl |= B43_MACCTL_KEEP_CTL;
3133 if (wl->filter_flags & FIF_FCSFAIL)
3134 ctl |= B43_MACCTL_KEEP_BAD;
3135 if (wl->filter_flags & FIF_PLCPFAIL)
3136 ctl |= B43_MACCTL_KEEP_BADPLCP;
3137 if (wl->filter_flags & FIF_BCN_PRBRESP_PROMISC)
3138 ctl |= B43_MACCTL_BEACPROMISC;
3140 /* Workaround: On old hardware the HW-MAC-address-filter
3141 * doesn't work properly, so always run promisc in filter
3142 * it in software. */
3143 if (dev->dev->core_rev <= 4)
3144 ctl |= B43_MACCTL_PROMISC;
3146 b43_write32(dev, B43_MMIO_MACCTL, ctl);
3149 if ((ctl & B43_MACCTL_INFRA) && !(ctl & B43_MACCTL_AP)) {
3150 if (dev->dev->chip_id == 0x4306 &&
3151 dev->dev->chip_rev == 3)
3156 b43_write16(dev, 0x612, cfp_pretbtt);
3158 /* FIXME: We don't currently implement the PMQ mechanism,
3159 * so always disable it. If we want to implement PMQ,
3160 * we need to enable it here (clear DISCPMQ) in AP mode.
3162 if (0 /* ctl & B43_MACCTL_AP */)
3163 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_DISCPMQ, 0);
3165 b43_maskset32(dev, B43_MMIO_MACCTL, ~0, B43_MACCTL_DISCPMQ);
3168 static void b43_rate_memory_write(struct b43_wldev *dev, u16 rate, int is_ofdm)
3174 offset += (b43_plcp_get_ratecode_ofdm(rate) & 0x000F) * 2;
3177 offset += (b43_plcp_get_ratecode_cck(rate) & 0x000F) * 2;
3179 b43_shm_write16(dev, B43_SHM_SHARED, offset + 0x20,
3180 b43_shm_read16(dev, B43_SHM_SHARED, offset));
3183 static void b43_rate_memory_init(struct b43_wldev *dev)
3185 switch (dev->phy.type) {
3188 case B43_PHYTYPE_LP:
3189 case B43_PHYTYPE_HT:
3190 case B43_PHYTYPE_LCN:
3191 b43_rate_memory_write(dev, B43_OFDM_RATE_6MB, 1);
3192 b43_rate_memory_write(dev, B43_OFDM_RATE_9MB, 1);
3193 b43_rate_memory_write(dev, B43_OFDM_RATE_12MB, 1);
3194 b43_rate_memory_write(dev, B43_OFDM_RATE_18MB, 1);
3195 b43_rate_memory_write(dev, B43_OFDM_RATE_24MB, 1);
3196 b43_rate_memory_write(dev, B43_OFDM_RATE_36MB, 1);
3197 b43_rate_memory_write(dev, B43_OFDM_RATE_48MB, 1);
3198 b43_rate_memory_write(dev, B43_OFDM_RATE_54MB, 1);
3201 b43_rate_memory_write(dev, B43_CCK_RATE_1MB, 0);
3202 b43_rate_memory_write(dev, B43_CCK_RATE_2MB, 0);
3203 b43_rate_memory_write(dev, B43_CCK_RATE_5MB, 0);
3204 b43_rate_memory_write(dev, B43_CCK_RATE_11MB, 0);
3211 /* Set the default values for the PHY TX Control Words. */
3212 static void b43_set_phytxctl_defaults(struct b43_wldev *dev)
3216 ctl |= B43_TXH_PHY_ENC_CCK;
3217 ctl |= B43_TXH_PHY_ANT01AUTO;
3218 ctl |= B43_TXH_PHY_TXPWR;
3220 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_BEACPHYCTL, ctl);
3221 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_ACKCTSPHYCTL, ctl);
3222 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PRPHYCTL, ctl);
3225 /* Set the TX-Antenna for management frames sent by firmware. */
3226 static void b43_mgmtframe_txantenna(struct b43_wldev *dev, int antenna)
3231 ant = b43_antenna_to_phyctl(antenna);
3234 tmp = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_ACKCTSPHYCTL);
3235 tmp = (tmp & ~B43_TXH_PHY_ANT) | ant;
3236 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_ACKCTSPHYCTL, tmp);
3237 /* For Probe Resposes */
3238 tmp = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_PRPHYCTL);
3239 tmp = (tmp & ~B43_TXH_PHY_ANT) | ant;
3240 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PRPHYCTL, tmp);
3243 /* This is the opposite of b43_chip_init() */
3244 static void b43_chip_exit(struct b43_wldev *dev)
3247 b43_gpio_cleanup(dev);
3248 /* firmware is released later */
3251 /* Initialize the chip
3252 * http://bcm-specs.sipsolutions.net/ChipInit
3254 static int b43_chip_init(struct b43_wldev *dev)
3256 struct b43_phy *phy = &dev->phy;
3261 /* Initialize the MAC control */
3262 macctl = B43_MACCTL_IHR_ENABLED | B43_MACCTL_SHM_ENABLED;
3264 macctl |= B43_MACCTL_GMODE;
3265 macctl |= B43_MACCTL_INFRA;
3266 b43_write32(dev, B43_MMIO_MACCTL, macctl);
3268 err = b43_upload_microcode(dev);
3270 goto out; /* firmware is released later */
3272 err = b43_gpio_init(dev);
3274 goto out; /* firmware is released later */
3276 err = b43_upload_initvals(dev);
3278 goto err_gpio_clean;
3280 err = b43_upload_initvals_band(dev);
3282 goto err_gpio_clean;
3284 /* Turn the Analog on and initialize the PHY. */
3285 phy->ops->switch_analog(dev, 1);
3286 err = b43_phy_init(dev);
3288 goto err_gpio_clean;
3290 /* Disable Interference Mitigation. */
3291 if (phy->ops->interf_mitigation)
3292 phy->ops->interf_mitigation(dev, B43_INTERFMODE_NONE);
3294 /* Select the antennae */
3295 if (phy->ops->set_rx_antenna)
3296 phy->ops->set_rx_antenna(dev, B43_ANTENNA_DEFAULT);
3297 b43_mgmtframe_txantenna(dev, B43_ANTENNA_DEFAULT);
3299 if (phy->type == B43_PHYTYPE_B) {
3300 value16 = b43_read16(dev, 0x005E);
3302 b43_write16(dev, 0x005E, value16);
3304 b43_write32(dev, 0x0100, 0x01000000);
3305 if (dev->dev->core_rev < 5)
3306 b43_write32(dev, 0x010C, 0x01000000);
3308 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_INFRA, 0);
3309 b43_maskset32(dev, B43_MMIO_MACCTL, ~0, B43_MACCTL_INFRA);
3311 /* Probe Response Timeout value */
3312 /* FIXME: Default to 0, has to be set by ioctl probably... :-/ */
3313 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PRMAXTIME, 0);
3315 /* Initially set the wireless operation mode. */
3316 b43_adjust_opmode(dev);
3318 if (dev->dev->core_rev < 3) {
3319 b43_write16(dev, 0x060E, 0x0000);
3320 b43_write16(dev, 0x0610, 0x8000);
3321 b43_write16(dev, 0x0604, 0x0000);
3322 b43_write16(dev, 0x0606, 0x0200);
3324 b43_write32(dev, 0x0188, 0x80000000);
3325 b43_write32(dev, 0x018C, 0x02000000);
3327 b43_write32(dev, B43_MMIO_GEN_IRQ_REASON, 0x00004000);
3328 b43_write32(dev, B43_MMIO_DMA0_IRQ_MASK, 0x0001FC00);
3329 b43_write32(dev, B43_MMIO_DMA1_IRQ_MASK, 0x0000DC00);
3330 b43_write32(dev, B43_MMIO_DMA2_IRQ_MASK, 0x0000DC00);
3331 b43_write32(dev, B43_MMIO_DMA3_IRQ_MASK, 0x0001DC00);
3332 b43_write32(dev, B43_MMIO_DMA4_IRQ_MASK, 0x0000DC00);
3333 b43_write32(dev, B43_MMIO_DMA5_IRQ_MASK, 0x0000DC00);
3335 b43_mac_phy_clock_set(dev, true);
3337 switch (dev->dev->bus_type) {
3338 #ifdef CONFIG_B43_BCMA
3340 /* FIXME: 0xE74 is quite common, but should be read from CC */
3341 b43_write16(dev, B43_MMIO_POWERUP_DELAY, 0xE74);
3344 #ifdef CONFIG_B43_SSB
3346 b43_write16(dev, B43_MMIO_POWERUP_DELAY,
3347 dev->dev->sdev->bus->chipco.fast_pwrup_delay);
3353 b43dbg(dev->wl, "Chip initialized\n");
3358 b43_gpio_cleanup(dev);
3362 static void b43_periodic_every60sec(struct b43_wldev *dev)
3364 const struct b43_phy_operations *ops = dev->phy.ops;
3366 if (ops->pwork_60sec)
3367 ops->pwork_60sec(dev);
3369 /* Force check the TX power emission now. */
3370 b43_phy_txpower_check(dev, B43_TXPWR_IGNORE_TIME);
3373 static void b43_periodic_every30sec(struct b43_wldev *dev)
3375 /* Update device statistics. */
3376 b43_calculate_link_quality(dev);
3379 static void b43_periodic_every15sec(struct b43_wldev *dev)
3381 struct b43_phy *phy = &dev->phy;
3384 if (dev->fw.opensource) {
3385 /* Check if the firmware is still alive.
3386 * It will reset the watchdog counter to 0 in its idle loop. */
3387 wdr = b43_shm_read16(dev, B43_SHM_SCRATCH, B43_WATCHDOG_REG);
3388 if (unlikely(wdr)) {
3389 b43err(dev->wl, "Firmware watchdog: The firmware died!\n");
3390 b43_controller_restart(dev, "Firmware watchdog");
3393 b43_shm_write16(dev, B43_SHM_SCRATCH,
3394 B43_WATCHDOG_REG, 1);
3398 if (phy->ops->pwork_15sec)
3399 phy->ops->pwork_15sec(dev);
3401 atomic_set(&phy->txerr_cnt, B43_PHY_TX_BADNESS_LIMIT);
3405 if (b43_debug(dev, B43_DBG_VERBOSESTATS)) {
3408 b43dbg(dev->wl, "Stats: %7u IRQs/sec, %7u TX/sec, %7u RX/sec\n",
3409 dev->irq_count / 15,
3411 dev->rx_count / 15);
3415 for (i = 0; i < ARRAY_SIZE(dev->irq_bit_count); i++) {
3416 if (dev->irq_bit_count[i]) {
3417 b43dbg(dev->wl, "Stats: %7u IRQ-%02u/sec (0x%08X)\n",
3418 dev->irq_bit_count[i] / 15, i, (1 << i));
3419 dev->irq_bit_count[i] = 0;
3426 static void do_periodic_work(struct b43_wldev *dev)
3430 state = dev->periodic_state;
3432 b43_periodic_every60sec(dev);
3434 b43_periodic_every30sec(dev);
3435 b43_periodic_every15sec(dev);
3438 /* Periodic work locking policy:
3439 * The whole periodic work handler is protected by
3440 * wl->mutex. If another lock is needed somewhere in the
3441 * pwork callchain, it's acquired in-place, where it's needed.
3443 static void b43_periodic_work_handler(struct work_struct *work)
3445 struct b43_wldev *dev = container_of(work, struct b43_wldev,
3446 periodic_work.work);
3447 struct b43_wl *wl = dev->wl;
3448 unsigned long delay;
3450 mutex_lock(&wl->mutex);
3452 if (unlikely(b43_status(dev) != B43_STAT_STARTED))
3454 if (b43_debug(dev, B43_DBG_PWORK_STOP))
3457 do_periodic_work(dev);
3459 dev->periodic_state++;
3461 if (b43_debug(dev, B43_DBG_PWORK_FAST))
3462 delay = msecs_to_jiffies(50);
3464 delay = round_jiffies_relative(HZ * 15);
3465 ieee80211_queue_delayed_work(wl->hw, &dev->periodic_work, delay);
3467 mutex_unlock(&wl->mutex);
3470 static void b43_periodic_tasks_setup(struct b43_wldev *dev)
3472 struct delayed_work *work = &dev->periodic_work;
3474 dev->periodic_state = 0;
3475 INIT_DELAYED_WORK(work, b43_periodic_work_handler);
3476 ieee80211_queue_delayed_work(dev->wl->hw, work, 0);
3479 /* Check if communication with the device works correctly. */
3480 static int b43_validate_chipaccess(struct b43_wldev *dev)
3482 u32 v, backup0, backup4;
3484 backup0 = b43_shm_read32(dev, B43_SHM_SHARED, 0);
3485 backup4 = b43_shm_read32(dev, B43_SHM_SHARED, 4);
3487 /* Check for read/write and endianness problems. */
3488 b43_shm_write32(dev, B43_SHM_SHARED, 0, 0x55AAAA55);
3489 if (b43_shm_read32(dev, B43_SHM_SHARED, 0) != 0x55AAAA55)
3491 b43_shm_write32(dev, B43_SHM_SHARED, 0, 0xAA5555AA);
3492 if (b43_shm_read32(dev, B43_SHM_SHARED, 0) != 0xAA5555AA)
3495 /* Check if unaligned 32bit SHM_SHARED access works properly.
3496 * However, don't bail out on failure, because it's noncritical. */
3497 b43_shm_write16(dev, B43_SHM_SHARED, 0, 0x1122);
3498 b43_shm_write16(dev, B43_SHM_SHARED, 2, 0x3344);
3499 b43_shm_write16(dev, B43_SHM_SHARED, 4, 0x5566);
3500 b43_shm_write16(dev, B43_SHM_SHARED, 6, 0x7788);
3501 if (b43_shm_read32(dev, B43_SHM_SHARED, 2) != 0x55663344)
3502 b43warn(dev->wl, "Unaligned 32bit SHM read access is broken\n");
3503 b43_shm_write32(dev, B43_SHM_SHARED, 2, 0xAABBCCDD);
3504 if (b43_shm_read16(dev, B43_SHM_SHARED, 0) != 0x1122 ||
3505 b43_shm_read16(dev, B43_SHM_SHARED, 2) != 0xCCDD ||
3506 b43_shm_read16(dev, B43_SHM_SHARED, 4) != 0xAABB ||
3507 b43_shm_read16(dev, B43_SHM_SHARED, 6) != 0x7788)
3508 b43warn(dev->wl, "Unaligned 32bit SHM write access is broken\n");
3510 b43_shm_write32(dev, B43_SHM_SHARED, 0, backup0);
3511 b43_shm_write32(dev, B43_SHM_SHARED, 4, backup4);
3513 if ((dev->dev->core_rev >= 3) && (dev->dev->core_rev <= 10)) {
3514 /* The 32bit register shadows the two 16bit registers
3515 * with update sideeffects. Validate this. */
3516 b43_write16(dev, B43_MMIO_TSF_CFP_START, 0xAAAA);
3517 b43_write32(dev, B43_MMIO_TSF_CFP_START, 0xCCCCBBBB);
3518 if (b43_read16(dev, B43_MMIO_TSF_CFP_START_LOW) != 0xBBBB)
3520 if (b43_read16(dev, B43_MMIO_TSF_CFP_START_HIGH) != 0xCCCC)
3523 b43_write32(dev, B43_MMIO_TSF_CFP_START, 0);
3525 v = b43_read32(dev, B43_MMIO_MACCTL);
3526 v |= B43_MACCTL_GMODE;
3527 if (v != (B43_MACCTL_GMODE | B43_MACCTL_IHR_ENABLED))
3532 b43err(dev->wl, "Failed to validate the chipaccess\n");
3536 static void b43_security_init(struct b43_wldev *dev)
3538 dev->ktp = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_KTP);
3539 /* KTP is a word address, but we address SHM bytewise.
3540 * So multiply by two.
3543 /* Number of RCMTA address slots */
3544 b43_write16(dev, B43_MMIO_RCMTA_COUNT, B43_NR_PAIRWISE_KEYS);
3545 /* Clear the key memory. */
3546 b43_clear_keys(dev);
3549 #ifdef CONFIG_B43_HWRNG
3550 static int b43_rng_read(struct hwrng *rng, u32 *data)
3552 struct b43_wl *wl = (struct b43_wl *)rng->priv;
3553 struct b43_wldev *dev;
3554 int count = -ENODEV;
3556 mutex_lock(&wl->mutex);
3557 dev = wl->current_dev;
3558 if (likely(dev && b43_status(dev) >= B43_STAT_INITIALIZED)) {
3559 *data = b43_read16(dev, B43_MMIO_RNG);
3560 count = sizeof(u16);
3562 mutex_unlock(&wl->mutex);
3566 #endif /* CONFIG_B43_HWRNG */
3568 static void b43_rng_exit(struct b43_wl *wl)
3570 #ifdef CONFIG_B43_HWRNG
3571 if (wl->rng_initialized)
3572 hwrng_unregister(&wl->rng);
3573 #endif /* CONFIG_B43_HWRNG */
3576 static int b43_rng_init(struct b43_wl *wl)
3580 #ifdef CONFIG_B43_HWRNG
3581 snprintf(wl->rng_name, ARRAY_SIZE(wl->rng_name),
3582 "%s_%s", KBUILD_MODNAME, wiphy_name(wl->hw->wiphy));
3583 wl->rng.name = wl->rng_name;
3584 wl->rng.data_read = b43_rng_read;
3585 wl->rng.priv = (unsigned long)wl;
3586 wl->rng_initialized = true;
3587 err = hwrng_register(&wl->rng);
3589 wl->rng_initialized = false;
3590 b43err(wl, "Failed to register the random "
3591 "number generator (%d)\n", err);
3593 #endif /* CONFIG_B43_HWRNG */
3598 static void b43_tx_work(struct work_struct *work)
3600 struct b43_wl *wl = container_of(work, struct b43_wl, tx_work);
3601 struct b43_wldev *dev;
3602 struct sk_buff *skb;
3606 mutex_lock(&wl->mutex);
3607 dev = wl->current_dev;
3608 if (unlikely(!dev || b43_status(dev) < B43_STAT_STARTED)) {
3609 mutex_unlock(&wl->mutex);
3613 for (queue_num = 0; queue_num < B43_QOS_QUEUE_NUM; queue_num++) {
3614 while (skb_queue_len(&wl->tx_queue[queue_num])) {
3615 skb = skb_dequeue(&wl->tx_queue[queue_num]);
3616 if (b43_using_pio_transfers(dev))
3617 err = b43_pio_tx(dev, skb);
3619 err = b43_dma_tx(dev, skb);
3620 if (err == -ENOSPC) {
3621 wl->tx_queue_stopped[queue_num] = 1;
3622 ieee80211_stop_queue(wl->hw, queue_num);
3623 skb_queue_head(&wl->tx_queue[queue_num], skb);
3627 ieee80211_free_txskb(wl->hw, skb);
3632 wl->tx_queue_stopped[queue_num] = 0;
3638 mutex_unlock(&wl->mutex);
3641 static void b43_op_tx(struct ieee80211_hw *hw,
3642 struct ieee80211_tx_control *control,
3643 struct sk_buff *skb)
3645 struct b43_wl *wl = hw_to_b43_wl(hw);
3647 if (unlikely(skb->len < 2 + 2 + 6)) {
3648 /* Too short, this can't be a valid frame. */
3649 ieee80211_free_txskb(hw, skb);
3652 B43_WARN_ON(skb_shinfo(skb)->nr_frags);
3654 skb_queue_tail(&wl->tx_queue[skb->queue_mapping], skb);
3655 if (!wl->tx_queue_stopped[skb->queue_mapping]) {
3656 ieee80211_queue_work(wl->hw, &wl->tx_work);
3658 ieee80211_stop_queue(wl->hw, skb->queue_mapping);
3662 static void b43_qos_params_upload(struct b43_wldev *dev,
3663 const struct ieee80211_tx_queue_params *p,
3666 u16 params[B43_NR_QOSPARAMS];
3670 if (!dev->qos_enabled)
3673 bslots = b43_read16(dev, B43_MMIO_RNG) & p->cw_min;
3675 memset(¶ms, 0, sizeof(params));
3677 params[B43_QOSPARAM_TXOP] = p->txop * 32;
3678 params[B43_QOSPARAM_CWMIN] = p->cw_min;
3679 params[B43_QOSPARAM_CWMAX] = p->cw_max;
3680 params[B43_QOSPARAM_CWCUR] = p->cw_min;
3681 params[B43_QOSPARAM_AIFS] = p->aifs;
3682 params[B43_QOSPARAM_BSLOTS] = bslots;
3683 params[B43_QOSPARAM_REGGAP] = bslots + p->aifs;
3685 for (i = 0; i < ARRAY_SIZE(params); i++) {
3686 if (i == B43_QOSPARAM_STATUS) {
3687 tmp = b43_shm_read16(dev, B43_SHM_SHARED,
3688 shm_offset + (i * 2));
3689 /* Mark the parameters as updated. */
3691 b43_shm_write16(dev, B43_SHM_SHARED,
3692 shm_offset + (i * 2),
3695 b43_shm_write16(dev, B43_SHM_SHARED,
3696 shm_offset + (i * 2),
3702 /* Mapping of mac80211 queue numbers to b43 QoS SHM offsets. */
3703 static const u16 b43_qos_shm_offsets[] = {
3704 /* [mac80211-queue-nr] = SHM_OFFSET, */
3705 [0] = B43_QOS_VOICE,
3706 [1] = B43_QOS_VIDEO,
3707 [2] = B43_QOS_BESTEFFORT,
3708 [3] = B43_QOS_BACKGROUND,
3711 /* Update all QOS parameters in hardware. */
3712 static void b43_qos_upload_all(struct b43_wldev *dev)
3714 struct b43_wl *wl = dev->wl;
3715 struct b43_qos_params *params;
3718 if (!dev->qos_enabled)
3721 BUILD_BUG_ON(ARRAY_SIZE(b43_qos_shm_offsets) !=
3722 ARRAY_SIZE(wl->qos_params));
3724 b43_mac_suspend(dev);
3725 for (i = 0; i < ARRAY_SIZE(wl->qos_params); i++) {
3726 params = &(wl->qos_params[i]);
3727 b43_qos_params_upload(dev, &(params->p),
3728 b43_qos_shm_offsets[i]);
3730 b43_mac_enable(dev);
3733 static void b43_qos_clear(struct b43_wl *wl)
3735 struct b43_qos_params *params;
3738 /* Initialize QoS parameters to sane defaults. */
3740 BUILD_BUG_ON(ARRAY_SIZE(b43_qos_shm_offsets) !=
3741 ARRAY_SIZE(wl->qos_params));
3743 for (i = 0; i < ARRAY_SIZE(wl->qos_params); i++) {
3744 params = &(wl->qos_params[i]);
3746 switch (b43_qos_shm_offsets[i]) {
3750 params->p.cw_min = 0x0001;
3751 params->p.cw_max = 0x0001;
3756 params->p.cw_min = 0x0001;
3757 params->p.cw_max = 0x0001;
3759 case B43_QOS_BESTEFFORT:
3762 params->p.cw_min = 0x0001;
3763 params->p.cw_max = 0x03FF;
3765 case B43_QOS_BACKGROUND:
3768 params->p.cw_min = 0x0001;
3769 params->p.cw_max = 0x03FF;
3777 /* Initialize the core's QOS capabilities */
3778 static void b43_qos_init(struct b43_wldev *dev)
3780 if (!dev->qos_enabled) {
3781 /* Disable QOS support. */
3782 b43_hf_write(dev, b43_hf_read(dev) & ~B43_HF_EDCF);
3783 b43_write16(dev, B43_MMIO_IFSCTL,
3784 b43_read16(dev, B43_MMIO_IFSCTL)
3785 & ~B43_MMIO_IFSCTL_USE_EDCF);
3786 b43dbg(dev->wl, "QoS disabled\n");
3790 /* Upload the current QOS parameters. */
3791 b43_qos_upload_all(dev);
3793 /* Enable QOS support. */
3794 b43_hf_write(dev, b43_hf_read(dev) | B43_HF_EDCF);
3795 b43_write16(dev, B43_MMIO_IFSCTL,
3796 b43_read16(dev, B43_MMIO_IFSCTL)
3797 | B43_MMIO_IFSCTL_USE_EDCF);
3798 b43dbg(dev->wl, "QoS enabled\n");
3801 static int b43_op_conf_tx(struct ieee80211_hw *hw,
3802 struct ieee80211_vif *vif, u16 _queue,
3803 const struct ieee80211_tx_queue_params *params)
3805 struct b43_wl *wl = hw_to_b43_wl(hw);
3806 struct b43_wldev *dev;
3807 unsigned int queue = (unsigned int)_queue;
3810 if (queue >= ARRAY_SIZE(wl->qos_params)) {
3811 /* Queue not available or don't support setting
3812 * params on this queue. Return success to not
3813 * confuse mac80211. */
3816 BUILD_BUG_ON(ARRAY_SIZE(b43_qos_shm_offsets) !=
3817 ARRAY_SIZE(wl->qos_params));
3819 mutex_lock(&wl->mutex);
3820 dev = wl->current_dev;
3821 if (unlikely(!dev || (b43_status(dev) < B43_STAT_INITIALIZED)))
3824 memcpy(&(wl->qos_params[queue].p), params, sizeof(*params));
3825 b43_mac_suspend(dev);
3826 b43_qos_params_upload(dev, &(wl->qos_params[queue].p),
3827 b43_qos_shm_offsets[queue]);
3828 b43_mac_enable(dev);
3832 mutex_unlock(&wl->mutex);
3837 static int b43_op_get_stats(struct ieee80211_hw *hw,
3838 struct ieee80211_low_level_stats *stats)
3840 struct b43_wl *wl = hw_to_b43_wl(hw);
3842 mutex_lock(&wl->mutex);
3843 memcpy(stats, &wl->ieee_stats, sizeof(*stats));
3844 mutex_unlock(&wl->mutex);
3849 static u64 b43_op_get_tsf(struct ieee80211_hw *hw, struct ieee80211_vif *vif)
3851 struct b43_wl *wl = hw_to_b43_wl(hw);
3852 struct b43_wldev *dev;
3855 mutex_lock(&wl->mutex);
3856 dev = wl->current_dev;
3858 if (dev && (b43_status(dev) >= B43_STAT_INITIALIZED))
3859 b43_tsf_read(dev, &tsf);
3863 mutex_unlock(&wl->mutex);
3868 static void b43_op_set_tsf(struct ieee80211_hw *hw,
3869 struct ieee80211_vif *vif, u64 tsf)
3871 struct b43_wl *wl = hw_to_b43_wl(hw);
3872 struct b43_wldev *dev;
3874 mutex_lock(&wl->mutex);
3875 dev = wl->current_dev;
3877 if (dev && (b43_status(dev) >= B43_STAT_INITIALIZED))
3878 b43_tsf_write(dev, tsf);
3880 mutex_unlock(&wl->mutex);
3883 static const char *band_to_string(enum nl80211_band band)
3886 case NL80211_BAND_5GHZ:
3888 case NL80211_BAND_2GHZ:
3897 /* Expects wl->mutex locked */
3898 static int b43_switch_band(struct b43_wldev *dev,
3899 struct ieee80211_channel *chan)
3901 struct b43_phy *phy = &dev->phy;
3905 switch (chan->band) {
3906 case NL80211_BAND_5GHZ:
3909 case NL80211_BAND_2GHZ:
3917 if (!((gmode && phy->supports_2ghz) ||
3918 (!gmode && phy->supports_5ghz))) {
3919 b43err(dev->wl, "This device doesn't support %s-GHz band\n",
3920 band_to_string(chan->band));
3924 if (!!phy->gmode == !!gmode) {
3925 /* This device is already running. */
3929 b43dbg(dev->wl, "Switching to %s GHz band\n",
3930 band_to_string(chan->band));
3932 /* Some new devices don't need disabling radio for band switching */
3933 if (!(phy->type == B43_PHYTYPE_N && phy->rev >= 3))
3934 b43_software_rfkill(dev, true);
3937 b43_phy_put_into_reset(dev);
3938 switch (dev->dev->bus_type) {
3939 #ifdef CONFIG_B43_BCMA
3941 tmp = bcma_aread32(dev->dev->bdev, BCMA_IOCTL);
3943 tmp |= B43_BCMA_IOCTL_GMODE;
3945 tmp &= ~B43_BCMA_IOCTL_GMODE;
3946 bcma_awrite32(dev->dev->bdev, BCMA_IOCTL, tmp);
3949 #ifdef CONFIG_B43_SSB
3951 tmp = ssb_read32(dev->dev->sdev, SSB_TMSLOW);
3953 tmp |= B43_TMSLOW_GMODE;
3955 tmp &= ~B43_TMSLOW_GMODE;
3956 ssb_write32(dev->dev->sdev, SSB_TMSLOW, tmp);
3960 b43_phy_take_out_of_reset(dev);
3962 b43_upload_initvals_band(dev);
3969 static void b43_set_beacon_listen_interval(struct b43_wldev *dev, u16 interval)
3971 interval = min_t(u16, interval, (u16)0xFF);
3972 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_BCN_LI, interval);
3975 /* Write the short and long frame retry limit values. */
3976 static void b43_set_retry_limits(struct b43_wldev *dev,
3977 unsigned int short_retry,
3978 unsigned int long_retry)
3980 /* The retry limit is a 4-bit counter. Enforce this to avoid overflowing
3981 * the chip-internal counter. */
3982 short_retry = min(short_retry, (unsigned int)0xF);
3983 long_retry = min(long_retry, (unsigned int)0xF);
3985 b43_shm_write16(dev, B43_SHM_SCRATCH, B43_SHM_SC_SRLIMIT,
3987 b43_shm_write16(dev, B43_SHM_SCRATCH, B43_SHM_SC_LRLIMIT,
3991 static int b43_op_config(struct ieee80211_hw *hw, u32 changed)
3993 struct b43_wl *wl = hw_to_b43_wl(hw);
3994 struct b43_wldev *dev = wl->current_dev;
3995 struct b43_phy *phy = &dev->phy;
3996 struct ieee80211_conf *conf = &hw->conf;
4000 mutex_lock(&wl->mutex);
4001 b43_mac_suspend(dev);
4003 if (changed & IEEE80211_CONF_CHANGE_LISTEN_INTERVAL)
4004 b43_set_beacon_listen_interval(dev, conf->listen_interval);
4006 if (changed & IEEE80211_CONF_CHANGE_CHANNEL) {
4007 phy->chandef = &conf->chandef;
4008 phy->channel = conf->chandef.chan->hw_value;
4010 /* Switch the band (if necessary). */
4011 err = b43_switch_band(dev, conf->chandef.chan);
4013 goto out_mac_enable;
4015 /* Switch to the requested channel.
4016 * The firmware takes care of races with the TX handler.
4018 b43_switch_channel(dev, phy->channel);
4021 if (changed & IEEE80211_CONF_CHANGE_RETRY_LIMITS)
4022 b43_set_retry_limits(dev, conf->short_frame_max_tx_count,
4023 conf->long_frame_max_tx_count);
4024 changed &= ~IEEE80211_CONF_CHANGE_RETRY_LIMITS;
4026 goto out_mac_enable;
4028 dev->wl->radiotap_enabled = !!(conf->flags & IEEE80211_CONF_MONITOR);
4030 /* Adjust the desired TX power level. */
4031 if (conf->power_level != 0) {
4032 if (conf->power_level != phy->desired_txpower) {
4033 phy->desired_txpower = conf->power_level;
4034 b43_phy_txpower_check(dev, B43_TXPWR_IGNORE_TIME |
4035 B43_TXPWR_IGNORE_TSSI);
4039 /* Antennas for RX and management frame TX. */
4040 antenna = B43_ANTENNA_DEFAULT;
4041 b43_mgmtframe_txantenna(dev, antenna);
4042 antenna = B43_ANTENNA_DEFAULT;
4043 if (phy->ops->set_rx_antenna)
4044 phy->ops->set_rx_antenna(dev, antenna);
4046 if (wl->radio_enabled != phy->radio_on) {
4047 if (wl->radio_enabled) {
4048 b43_software_rfkill(dev, false);
4049 b43info(dev->wl, "Radio turned on by software\n");
4050 if (!dev->radio_hw_enable) {
4051 b43info(dev->wl, "The hardware RF-kill button "
4052 "still turns the radio physically off. "
4053 "Press the button to turn it on.\n");
4056 b43_software_rfkill(dev, true);
4057 b43info(dev->wl, "Radio turned off by software\n");
4062 b43_mac_enable(dev);
4063 mutex_unlock(&wl->mutex);
4068 static void b43_update_basic_rates(struct b43_wldev *dev, u32 brates)
4070 struct ieee80211_supported_band *sband =
4071 dev->wl->hw->wiphy->bands[b43_current_band(dev->wl)];
4072 struct ieee80211_rate *rate;
4074 u16 basic, direct, offset, basic_offset, rateptr;
4076 for (i = 0; i < sband->n_bitrates; i++) {
4077 rate = &sband->bitrates[i];
4079 if (b43_is_cck_rate(rate->hw_value)) {
4080 direct = B43_SHM_SH_CCKDIRECT;
4081 basic = B43_SHM_SH_CCKBASIC;
4082 offset = b43_plcp_get_ratecode_cck(rate->hw_value);
4085 direct = B43_SHM_SH_OFDMDIRECT;
4086 basic = B43_SHM_SH_OFDMBASIC;
4087 offset = b43_plcp_get_ratecode_ofdm(rate->hw_value);
4091 rate = ieee80211_get_response_rate(sband, brates, rate->bitrate);
4093 if (b43_is_cck_rate(rate->hw_value)) {
4094 basic_offset = b43_plcp_get_ratecode_cck(rate->hw_value);
4095 basic_offset &= 0xF;
4097 basic_offset = b43_plcp_get_ratecode_ofdm(rate->hw_value);
4098 basic_offset &= 0xF;
4102 * Get the pointer that we need to point to
4103 * from the direct map
4105 rateptr = b43_shm_read16(dev, B43_SHM_SHARED,
4106 direct + 2 * basic_offset);
4107 /* and write it to the basic map */
4108 b43_shm_write16(dev, B43_SHM_SHARED, basic + 2 * offset,
4113 static void b43_op_bss_info_changed(struct ieee80211_hw *hw,
4114 struct ieee80211_vif *vif,
4115 struct ieee80211_bss_conf *conf,
4118 struct b43_wl *wl = hw_to_b43_wl(hw);
4119 struct b43_wldev *dev;
4121 mutex_lock(&wl->mutex);
4123 dev = wl->current_dev;
4124 if (!dev || b43_status(dev) < B43_STAT_STARTED)
4125 goto out_unlock_mutex;
4127 B43_WARN_ON(wl->vif != vif);
4129 if (changed & BSS_CHANGED_BSSID) {
4131 memcpy(wl->bssid, conf->bssid, ETH_ALEN);
4133 eth_zero_addr(wl->bssid);
4136 if (b43_status(dev) >= B43_STAT_INITIALIZED) {
4137 if (changed & BSS_CHANGED_BEACON &&
4138 (b43_is_mode(wl, NL80211_IFTYPE_AP) ||
4139 b43_is_mode(wl, NL80211_IFTYPE_MESH_POINT) ||
4140 b43_is_mode(wl, NL80211_IFTYPE_ADHOC)))
4141 b43_update_templates(wl);
4143 if (changed & BSS_CHANGED_BSSID)
4144 b43_write_mac_bssid_templates(dev);
4147 b43_mac_suspend(dev);
4149 /* Update templates for AP/mesh mode. */
4150 if (changed & BSS_CHANGED_BEACON_INT &&
4151 (b43_is_mode(wl, NL80211_IFTYPE_AP) ||
4152 b43_is_mode(wl, NL80211_IFTYPE_MESH_POINT) ||
4153 b43_is_mode(wl, NL80211_IFTYPE_ADHOC)) &&
4155 b43_set_beacon_int(dev, conf->beacon_int);
4157 if (changed & BSS_CHANGED_BASIC_RATES)
4158 b43_update_basic_rates(dev, conf->basic_rates);
4160 if (changed & BSS_CHANGED_ERP_SLOT) {
4161 if (conf->use_short_slot)
4162 b43_short_slot_timing_enable(dev);
4164 b43_short_slot_timing_disable(dev);
4167 b43_mac_enable(dev);
4169 mutex_unlock(&wl->mutex);
4172 static int b43_op_set_key(struct ieee80211_hw *hw, enum set_key_cmd cmd,
4173 struct ieee80211_vif *vif, struct ieee80211_sta *sta,
4174 struct ieee80211_key_conf *key)
4176 struct b43_wl *wl = hw_to_b43_wl(hw);
4177 struct b43_wldev *dev;
4181 static const u8 bcast_addr[ETH_ALEN] = { 0xff, 0xff, 0xff, 0xff, 0xff, 0xff };
4183 if (modparam_nohwcrypt)
4184 return -ENOSPC; /* User disabled HW-crypto */
4186 if ((vif->type == NL80211_IFTYPE_ADHOC ||
4187 vif->type == NL80211_IFTYPE_MESH_POINT) &&
4188 (key->cipher == WLAN_CIPHER_SUITE_TKIP ||
4189 key->cipher == WLAN_CIPHER_SUITE_CCMP) &&
4190 !(key->flags & IEEE80211_KEY_FLAG_PAIRWISE)) {
4192 * For now, disable hw crypto for the RSN IBSS group keys. This
4193 * could be optimized in the future, but until that gets
4194 * implemented, use of software crypto for group addressed
4195 * frames is a acceptable to allow RSN IBSS to be used.
4200 mutex_lock(&wl->mutex);
4202 dev = wl->current_dev;
4204 if (!dev || b43_status(dev) < B43_STAT_INITIALIZED)
4207 if (dev->fw.pcm_request_failed || !dev->hwcrypto_enabled) {
4208 /* We don't have firmware for the crypto engine.
4209 * Must use software-crypto. */
4215 switch (key->cipher) {
4216 case WLAN_CIPHER_SUITE_WEP40:
4217 algorithm = B43_SEC_ALGO_WEP40;
4219 case WLAN_CIPHER_SUITE_WEP104:
4220 algorithm = B43_SEC_ALGO_WEP104;
4222 case WLAN_CIPHER_SUITE_TKIP:
4223 algorithm = B43_SEC_ALGO_TKIP;
4225 case WLAN_CIPHER_SUITE_CCMP:
4226 algorithm = B43_SEC_ALGO_AES;
4232 index = (u8) (key->keyidx);
4238 if (algorithm == B43_SEC_ALGO_TKIP &&
4239 (!(key->flags & IEEE80211_KEY_FLAG_PAIRWISE) ||
4240 !modparam_hwtkip)) {
4241 /* We support only pairwise key */
4246 if (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) {
4247 if (WARN_ON(!sta)) {
4251 /* Pairwise key with an assigned MAC address. */
4252 err = b43_key_write(dev, -1, algorithm,
4253 key->key, key->keylen,
4257 err = b43_key_write(dev, index, algorithm,
4258 key->key, key->keylen, NULL, key);
4263 if (algorithm == B43_SEC_ALGO_WEP40 ||
4264 algorithm == B43_SEC_ALGO_WEP104) {
4265 b43_hf_write(dev, b43_hf_read(dev) | B43_HF_USEDEFKEYS);
4268 b43_hf_read(dev) & ~B43_HF_USEDEFKEYS);
4270 key->flags |= IEEE80211_KEY_FLAG_GENERATE_IV;
4271 if (algorithm == B43_SEC_ALGO_TKIP)
4272 key->flags |= IEEE80211_KEY_FLAG_GENERATE_MMIC;
4275 err = b43_key_clear(dev, key->hw_key_idx);
4286 b43dbg(wl, "%s hardware based encryption for keyidx: %d, "
4288 cmd == SET_KEY ? "Using" : "Disabling", key->keyidx,
4289 sta ? sta->addr : bcast_addr);
4290 b43_dump_keymemory(dev);
4292 mutex_unlock(&wl->mutex);
4297 static void b43_op_configure_filter(struct ieee80211_hw *hw,
4298 unsigned int changed, unsigned int *fflags,
4301 struct b43_wl *wl = hw_to_b43_wl(hw);
4302 struct b43_wldev *dev;
4304 mutex_lock(&wl->mutex);
4305 dev = wl->current_dev;
4311 *fflags &= FIF_ALLMULTI |
4316 FIF_BCN_PRBRESP_PROMISC;
4318 changed &= FIF_ALLMULTI |
4323 FIF_BCN_PRBRESP_PROMISC;
4325 wl->filter_flags = *fflags;
4327 if (changed && b43_status(dev) >= B43_STAT_INITIALIZED)
4328 b43_adjust_opmode(dev);
4331 mutex_unlock(&wl->mutex);
4334 /* Locking: wl->mutex
4335 * Returns the current dev. This might be different from the passed in dev,
4336 * because the core might be gone away while we unlocked the mutex. */
4337 static struct b43_wldev * b43_wireless_core_stop(struct b43_wldev *dev)
4340 struct b43_wldev *orig_dev;
4348 if (!dev || b43_status(dev) < B43_STAT_STARTED)
4351 /* Cancel work. Unlock to avoid deadlocks. */
4352 mutex_unlock(&wl->mutex);
4353 cancel_delayed_work_sync(&dev->periodic_work);
4354 cancel_work_sync(&wl->tx_work);
4356 mutex_lock(&wl->mutex);
4357 dev = wl->current_dev;
4358 if (!dev || b43_status(dev) < B43_STAT_STARTED) {
4359 /* Whoops, aliens ate up the device while we were unlocked. */
4363 /* Disable interrupts on the device. */
4364 b43_set_status(dev, B43_STAT_INITIALIZED);
4365 if (b43_bus_host_is_sdio(dev->dev)) {
4366 /* wl->mutex is locked. That is enough. */
4367 b43_write32(dev, B43_MMIO_GEN_IRQ_MASK, 0);
4368 b43_read32(dev, B43_MMIO_GEN_IRQ_MASK); /* Flush */
4370 spin_lock_irq(&wl->hardirq_lock);
4371 b43_write32(dev, B43_MMIO_GEN_IRQ_MASK, 0);
4372 b43_read32(dev, B43_MMIO_GEN_IRQ_MASK); /* Flush */
4373 spin_unlock_irq(&wl->hardirq_lock);
4375 /* Synchronize and free the interrupt handlers. Unlock to avoid deadlocks. */
4377 mutex_unlock(&wl->mutex);
4378 if (b43_bus_host_is_sdio(dev->dev))
4379 b43_sdio_free_irq(dev);
4381 free_irq(dev->dev->irq, dev);
4382 mutex_lock(&wl->mutex);
4383 dev = wl->current_dev;
4386 if (dev != orig_dev) {
4387 if (b43_status(dev) >= B43_STAT_STARTED)
4391 mask = b43_read32(dev, B43_MMIO_GEN_IRQ_MASK);
4392 B43_WARN_ON(mask != 0xFFFFFFFF && mask);
4394 /* Drain all TX queues. */
4395 for (queue_num = 0; queue_num < B43_QOS_QUEUE_NUM; queue_num++) {
4396 while (skb_queue_len(&wl->tx_queue[queue_num])) {
4397 struct sk_buff *skb;
4399 skb = skb_dequeue(&wl->tx_queue[queue_num]);
4400 ieee80211_free_txskb(wl->hw, skb);
4404 b43_mac_suspend(dev);
4406 b43dbg(wl, "Wireless interface stopped\n");
4411 /* Locking: wl->mutex */
4412 static int b43_wireless_core_start(struct b43_wldev *dev)
4416 B43_WARN_ON(b43_status(dev) != B43_STAT_INITIALIZED);
4418 drain_txstatus_queue(dev);
4419 if (b43_bus_host_is_sdio(dev->dev)) {
4420 err = b43_sdio_request_irq(dev, b43_sdio_interrupt_handler);
4422 b43err(dev->wl, "Cannot request SDIO IRQ\n");
4426 err = request_threaded_irq(dev->dev->irq, b43_interrupt_handler,
4427 b43_interrupt_thread_handler,
4428 IRQF_SHARED, KBUILD_MODNAME, dev);
4430 b43err(dev->wl, "Cannot request IRQ-%d\n",
4436 /* We are ready to run. */
4437 ieee80211_wake_queues(dev->wl->hw);
4438 b43_set_status(dev, B43_STAT_STARTED);
4440 /* Start data flow (TX/RX). */
4441 b43_mac_enable(dev);
4442 b43_write32(dev, B43_MMIO_GEN_IRQ_MASK, dev->irq_mask);
4444 /* Start maintenance work */
4445 b43_periodic_tasks_setup(dev);
4449 b43dbg(dev->wl, "Wireless interface started\n");
4454 static char *b43_phy_name(struct b43_wldev *dev, u8 phy_type)
4465 case B43_PHYTYPE_LP:
4467 case B43_PHYTYPE_SSLPN:
4469 case B43_PHYTYPE_HT:
4471 case B43_PHYTYPE_LCN:
4473 case B43_PHYTYPE_LCNXN:
4475 case B43_PHYTYPE_LCN40:
4477 case B43_PHYTYPE_AC:
4483 /* Get PHY and RADIO versioning numbers */
4484 static int b43_phy_versioning(struct b43_wldev *dev)
4486 struct b43_phy *phy = &dev->phy;
4487 const u8 core_rev = dev->dev->core_rev;
4496 int unsupported = 0;
4498 /* Get PHY versioning */
4499 tmp = b43_read16(dev, B43_MMIO_PHY_VER);
4500 analog_type = (tmp & B43_PHYVER_ANALOG) >> B43_PHYVER_ANALOG_SHIFT;
4501 phy_type = (tmp & B43_PHYVER_TYPE) >> B43_PHYVER_TYPE_SHIFT;
4502 phy_rev = (tmp & B43_PHYVER_VERSION);
4504 /* LCNXN is continuation of N which run out of revisions */
4505 if (phy_type == B43_PHYTYPE_LCNXN) {
4506 phy_type = B43_PHYTYPE_N;
4511 #ifdef CONFIG_B43_PHY_G
4517 #ifdef CONFIG_B43_PHY_N
4523 #ifdef CONFIG_B43_PHY_LP
4524 case B43_PHYTYPE_LP:
4529 #ifdef CONFIG_B43_PHY_HT
4530 case B43_PHYTYPE_HT:
4535 #ifdef CONFIG_B43_PHY_LCN
4536 case B43_PHYTYPE_LCN:
4541 #ifdef CONFIG_B43_PHY_AC
4542 case B43_PHYTYPE_AC:
4551 b43err(dev->wl, "FOUND UNSUPPORTED PHY (Analog %u, Type %d (%s), Revision %u)\n",
4552 analog_type, phy_type, b43_phy_name(dev, phy_type),
4556 b43info(dev->wl, "Found PHY: Analog %u, Type %d (%s), Revision %u\n",
4557 analog_type, phy_type, b43_phy_name(dev, phy_type), phy_rev);
4559 /* Get RADIO versioning */
4560 if (core_rev == 40 || core_rev == 42) {
4561 radio_manuf = 0x17F;
4563 b43_write16f(dev, B43_MMIO_RADIO24_CONTROL, 0);
4564 radio_rev = b43_read16(dev, B43_MMIO_RADIO24_DATA);
4566 b43_write16f(dev, B43_MMIO_RADIO24_CONTROL, 1);
4567 radio_id = b43_read16(dev, B43_MMIO_RADIO24_DATA);
4569 radio_ver = 0; /* Is there version somewhere? */
4570 } else if (core_rev >= 24) {
4573 for (tmp = 0; tmp < 3; tmp++) {
4574 b43_write16f(dev, B43_MMIO_RADIO24_CONTROL, tmp);
4575 radio24[tmp] = b43_read16(dev, B43_MMIO_RADIO24_DATA);
4578 radio_manuf = 0x17F;
4579 radio_id = (radio24[2] << 8) | radio24[1];
4580 radio_rev = (radio24[0] & 0xF);
4581 radio_ver = (radio24[0] & 0xF0) >> 4;
4583 if (dev->dev->chip_id == 0x4317) {
4584 if (dev->dev->chip_rev == 0)
4586 else if (dev->dev->chip_rev == 1)
4591 b43_write16f(dev, B43_MMIO_RADIO_CONTROL,
4593 tmp = b43_read16(dev, B43_MMIO_RADIO_DATA_LOW);
4594 b43_write16f(dev, B43_MMIO_RADIO_CONTROL,
4596 tmp |= b43_read16(dev, B43_MMIO_RADIO_DATA_HIGH) << 16;
4598 radio_manuf = (tmp & 0x00000FFF);
4599 radio_id = (tmp & 0x0FFFF000) >> 12;
4600 radio_rev = (tmp & 0xF0000000) >> 28;
4601 radio_ver = 0; /* Probably not available on old hw */
4604 if (radio_manuf != 0x17F /* Broadcom */)
4608 if ((radio_id & 0xFFF0) != 0x2050)
4612 if (radio_id != 0x2050)
4616 if (radio_id != 0x2055 && radio_id != 0x2056 &&
4619 if (radio_id == 0x2057 &&
4620 !(radio_rev == 9 || radio_rev == 14))
4623 case B43_PHYTYPE_LP:
4624 if (radio_id != 0x2062 && radio_id != 0x2063)
4627 case B43_PHYTYPE_HT:
4628 if (radio_id != 0x2059)
4631 case B43_PHYTYPE_LCN:
4632 if (radio_id != 0x2064)
4635 case B43_PHYTYPE_AC:
4636 if (radio_id != 0x2069)
4644 "FOUND UNSUPPORTED RADIO (Manuf 0x%X, ID 0x%X, Revision %u, Version %u)\n",
4645 radio_manuf, radio_id, radio_rev, radio_ver);
4649 "Found Radio: Manuf 0x%X, ID 0x%X, Revision %u, Version %u\n",
4650 radio_manuf, radio_id, radio_rev, radio_ver);
4652 /* FIXME: b43 treats "id" as "ver" and ignores the real "ver" */
4653 phy->radio_manuf = radio_manuf;
4654 phy->radio_ver = radio_id;
4655 phy->radio_rev = radio_rev;
4657 phy->analog = analog_type;
4658 phy->type = phy_type;
4664 static void setup_struct_phy_for_init(struct b43_wldev *dev,
4665 struct b43_phy *phy)
4667 phy->hardware_power_control = !!modparam_hwpctl;
4668 phy->next_txpwr_check_time = jiffies;
4669 /* PHY TX errors counter. */
4670 atomic_set(&phy->txerr_cnt, B43_PHY_TX_BADNESS_LIMIT);
4673 phy->phy_locked = false;
4674 phy->radio_locked = false;
4678 static void setup_struct_wldev_for_init(struct b43_wldev *dev)
4680 dev->dfq_valid = false;
4682 /* Assume the radio is enabled. If it's not enabled, the state will
4683 * immediately get fixed on the first periodic work run. */
4684 dev->radio_hw_enable = true;
4687 memset(&dev->stats, 0, sizeof(dev->stats));
4689 setup_struct_phy_for_init(dev, &dev->phy);
4691 /* IRQ related flags */
4692 dev->irq_reason = 0;
4693 memset(dev->dma_reason, 0, sizeof(dev->dma_reason));
4694 dev->irq_mask = B43_IRQ_MASKTEMPLATE;
4695 if (b43_modparam_verbose < B43_VERBOSITY_DEBUG)
4696 dev->irq_mask &= ~B43_IRQ_PHY_TXERR;
4698 dev->mac_suspended = 1;
4700 /* Noise calculation context */
4701 memset(&dev->noisecalc, 0, sizeof(dev->noisecalc));
4704 static void b43_bluetooth_coext_enable(struct b43_wldev *dev)
4706 struct ssb_sprom *sprom = dev->dev->bus_sprom;
4709 if (!modparam_btcoex)
4711 if (!(sprom->boardflags_lo & B43_BFL_BTCOEXIST))
4713 if (dev->phy.type != B43_PHYTYPE_B && !dev->phy.gmode)
4716 hf = b43_hf_read(dev);
4717 if (sprom->boardflags_lo & B43_BFL_BTCMOD)
4718 hf |= B43_HF_BTCOEXALT;
4720 hf |= B43_HF_BTCOEX;
4721 b43_hf_write(dev, hf);
4724 static void b43_bluetooth_coext_disable(struct b43_wldev *dev)
4726 if (!modparam_btcoex)
4731 static void b43_imcfglo_timeouts_workaround(struct b43_wldev *dev)
4733 struct ssb_bus *bus;
4736 #ifdef CONFIG_B43_SSB
4737 if (dev->dev->bus_type != B43_BUS_SSB)
4743 bus = dev->dev->sdev->bus;
4745 if ((bus->chip_id == 0x4311 && bus->chip_rev == 2) ||
4746 (bus->chip_id == 0x4312)) {
4747 tmp = ssb_read32(dev->dev->sdev, SSB_IMCFGLO);
4748 tmp &= ~SSB_IMCFGLO_REQTO;
4749 tmp &= ~SSB_IMCFGLO_SERTO;
4751 ssb_write32(dev->dev->sdev, SSB_IMCFGLO, tmp);
4752 ssb_commit_settings(bus);
4756 static void b43_set_synth_pu_delay(struct b43_wldev *dev, bool idle)
4760 /* The time value is in microseconds. */
4762 if (b43_is_mode(dev->wl, NL80211_IFTYPE_ADHOC) || idle)
4764 if ((dev->phy.radio_ver == 0x2050) && (dev->phy.radio_rev == 8))
4765 pu_delay = max(pu_delay, (u16)2400);
4767 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_SPUWKUP, pu_delay);
4770 /* Set the TSF CFP pre-TargetBeaconTransmissionTime. */
4771 static void b43_set_pretbtt(struct b43_wldev *dev)
4775 /* The time value is in microseconds. */
4776 if (b43_is_mode(dev->wl, NL80211_IFTYPE_ADHOC))
4780 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PRETBTT, pretbtt);
4781 b43_write16(dev, B43_MMIO_TSF_CFP_PRETBTT, pretbtt);
4784 /* Shutdown a wireless core */
4785 /* Locking: wl->mutex */
4786 static void b43_wireless_core_exit(struct b43_wldev *dev)
4788 B43_WARN_ON(dev && b43_status(dev) > B43_STAT_INITIALIZED);
4789 if (!dev || b43_status(dev) != B43_STAT_INITIALIZED)
4792 b43_set_status(dev, B43_STAT_UNINIT);
4794 /* Stop the microcode PSM. */
4795 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_PSM_RUN,
4796 B43_MACCTL_PSM_JMP0);
4798 switch (dev->dev->bus_type) {
4799 #ifdef CONFIG_B43_BCMA
4801 bcma_host_pci_down(dev->dev->bdev->bus);
4804 #ifdef CONFIG_B43_SSB
4814 dev->phy.ops->switch_analog(dev, 0);
4815 if (dev->wl->current_beacon) {
4816 dev_kfree_skb_any(dev->wl->current_beacon);
4817 dev->wl->current_beacon = NULL;
4820 b43_device_disable(dev, 0);
4821 b43_bus_may_powerdown(dev);
4824 /* Initialize a wireless core */
4825 static int b43_wireless_core_init(struct b43_wldev *dev)
4827 struct ssb_sprom *sprom = dev->dev->bus_sprom;
4828 struct b43_phy *phy = &dev->phy;
4832 B43_WARN_ON(b43_status(dev) != B43_STAT_UNINIT);
4834 err = b43_bus_powerup(dev, 0);
4837 if (!b43_device_is_enabled(dev))
4838 b43_wireless_core_reset(dev, phy->gmode);
4840 /* Reset all data structures. */
4841 setup_struct_wldev_for_init(dev);
4842 phy->ops->prepare_structs(dev);
4844 /* Enable IRQ routing to this device. */
4845 switch (dev->dev->bus_type) {
4846 #ifdef CONFIG_B43_BCMA
4848 bcma_host_pci_irq_ctl(dev->dev->bdev->bus,
4849 dev->dev->bdev, true);
4850 bcma_host_pci_up(dev->dev->bdev->bus);
4853 #ifdef CONFIG_B43_SSB
4855 ssb_pcicore_dev_irqvecs_enable(&dev->dev->sdev->bus->pcicore,
4861 b43_imcfglo_timeouts_workaround(dev);
4862 b43_bluetooth_coext_disable(dev);
4863 if (phy->ops->prepare_hardware) {
4864 err = phy->ops->prepare_hardware(dev);
4868 err = b43_chip_init(dev);
4871 b43_shm_write16(dev, B43_SHM_SHARED,
4872 B43_SHM_SH_WLCOREREV, dev->dev->core_rev);
4873 hf = b43_hf_read(dev);
4874 if (phy->type == B43_PHYTYPE_G) {
4878 if (sprom->boardflags_lo & B43_BFL_PACTRL)
4879 hf |= B43_HF_OFDMPABOOST;
4881 if (phy->radio_ver == 0x2050) {
4882 if (phy->radio_rev == 6)
4883 hf |= B43_HF_4318TSSI;
4884 if (phy->radio_rev < 6)
4885 hf |= B43_HF_VCORECALC;
4887 if (sprom->boardflags_lo & B43_BFL_XTAL_NOSLOW)
4888 hf |= B43_HF_DSCRQ; /* Disable slowclock requests from ucode. */
4889 #if defined(CONFIG_B43_SSB) && defined(CONFIG_SSB_DRIVER_PCICORE)
4890 if (dev->dev->bus_type == B43_BUS_SSB &&
4891 dev->dev->sdev->bus->bustype == SSB_BUSTYPE_PCI &&
4892 dev->dev->sdev->bus->pcicore.dev->id.revision <= 10)
4893 hf |= B43_HF_PCISCW; /* PCI slow clock workaround. */
4895 hf &= ~B43_HF_SKCFPUP;
4896 b43_hf_write(dev, hf);
4898 /* tell the ucode MAC capabilities */
4899 if (dev->dev->core_rev >= 13) {
4900 u32 mac_hw_cap = b43_read32(dev, B43_MMIO_MAC_HW_CAP);
4902 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_MACHW_L,
4903 mac_hw_cap & 0xffff);
4904 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_MACHW_H,
4905 (mac_hw_cap >> 16) & 0xffff);
4908 b43_set_retry_limits(dev, B43_DEFAULT_SHORT_RETRY_LIMIT,
4909 B43_DEFAULT_LONG_RETRY_LIMIT);
4910 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_SFFBLIM, 3);
4911 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_LFFBLIM, 2);
4913 /* Disable sending probe responses from firmware.
4914 * Setting the MaxTime to one usec will always trigger
4915 * a timeout, so we never send any probe resp.
4916 * A timeout of zero is infinite. */
4917 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PRMAXTIME, 1);
4919 b43_rate_memory_init(dev);
4920 b43_set_phytxctl_defaults(dev);
4922 /* Minimum Contention Window */
4923 if (phy->type == B43_PHYTYPE_B)
4924 b43_shm_write16(dev, B43_SHM_SCRATCH, B43_SHM_SC_MINCONT, 0x1F);
4926 b43_shm_write16(dev, B43_SHM_SCRATCH, B43_SHM_SC_MINCONT, 0xF);
4927 /* Maximum Contention Window */
4928 b43_shm_write16(dev, B43_SHM_SCRATCH, B43_SHM_SC_MAXCONT, 0x3FF);
4930 /* write phytype and phyvers */
4931 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PHYTYPE, phy->type);
4932 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PHYVER, phy->rev);
4934 if (b43_bus_host_is_pcmcia(dev->dev) ||
4935 b43_bus_host_is_sdio(dev->dev)) {
4936 dev->__using_pio_transfers = true;
4937 err = b43_pio_init(dev);
4938 } else if (dev->use_pio) {
4939 b43warn(dev->wl, "Forced PIO by use_pio module parameter. "
4940 "This should not be needed and will result in lower "
4942 dev->__using_pio_transfers = true;
4943 err = b43_pio_init(dev);
4945 dev->__using_pio_transfers = false;
4946 err = b43_dma_init(dev);
4951 b43_set_synth_pu_delay(dev, 1);
4952 b43_bluetooth_coext_enable(dev);
4954 b43_bus_powerup(dev, !(sprom->boardflags_lo & B43_BFL_XTAL_NOSLOW));
4955 b43_upload_card_macaddress(dev);
4956 b43_security_init(dev);
4958 ieee80211_wake_queues(dev->wl->hw);
4960 b43_set_status(dev, B43_STAT_INITIALIZED);
4968 b43_bus_may_powerdown(dev);
4969 B43_WARN_ON(b43_status(dev) != B43_STAT_UNINIT);
4973 static int b43_op_add_interface(struct ieee80211_hw *hw,
4974 struct ieee80211_vif *vif)
4976 struct b43_wl *wl = hw_to_b43_wl(hw);
4977 struct b43_wldev *dev;
4978 int err = -EOPNOTSUPP;
4980 /* TODO: allow WDS/AP devices to coexist */
4982 if (vif->type != NL80211_IFTYPE_AP &&
4983 vif->type != NL80211_IFTYPE_MESH_POINT &&
4984 vif->type != NL80211_IFTYPE_STATION &&
4985 vif->type != NL80211_IFTYPE_WDS &&
4986 vif->type != NL80211_IFTYPE_ADHOC)
4989 mutex_lock(&wl->mutex);
4991 goto out_mutex_unlock;
4993 b43dbg(wl, "Adding Interface type %d\n", vif->type);
4995 dev = wl->current_dev;
4996 wl->operating = true;
4998 wl->if_type = vif->type;
4999 memcpy(wl->mac_addr, vif->addr, ETH_ALEN);
5001 b43_adjust_opmode(dev);
5002 b43_set_pretbtt(dev);
5003 b43_set_synth_pu_delay(dev, 0);
5004 b43_upload_card_macaddress(dev);
5008 mutex_unlock(&wl->mutex);
5011 b43_op_bss_info_changed(hw, vif, &vif->bss_conf, ~0);
5016 static void b43_op_remove_interface(struct ieee80211_hw *hw,
5017 struct ieee80211_vif *vif)
5019 struct b43_wl *wl = hw_to_b43_wl(hw);
5020 struct b43_wldev *dev = wl->current_dev;
5022 b43dbg(wl, "Removing Interface type %d\n", vif->type);
5024 mutex_lock(&wl->mutex);
5026 B43_WARN_ON(!wl->operating);
5027 B43_WARN_ON(wl->vif != vif);
5030 wl->operating = false;
5032 b43_adjust_opmode(dev);
5033 eth_zero_addr(wl->mac_addr);
5034 b43_upload_card_macaddress(dev);
5036 mutex_unlock(&wl->mutex);
5039 static int b43_op_start(struct ieee80211_hw *hw)
5041 struct b43_wl *wl = hw_to_b43_wl(hw);
5042 struct b43_wldev *dev = wl->current_dev;
5046 /* Kill all old instance specific information to make sure
5047 * the card won't use it in the short timeframe between start
5048 * and mac80211 reconfiguring it. */
5049 eth_zero_addr(wl->bssid);
5050 eth_zero_addr(wl->mac_addr);
5051 wl->filter_flags = 0;
5052 wl->radiotap_enabled = false;
5054 wl->beacon0_uploaded = false;
5055 wl->beacon1_uploaded = false;
5056 wl->beacon_templates_virgin = true;
5057 wl->radio_enabled = true;
5059 mutex_lock(&wl->mutex);
5061 if (b43_status(dev) < B43_STAT_INITIALIZED) {
5062 err = b43_wireless_core_init(dev);
5064 goto out_mutex_unlock;
5068 if (b43_status(dev) < B43_STAT_STARTED) {
5069 err = b43_wireless_core_start(dev);
5072 b43_wireless_core_exit(dev);
5073 goto out_mutex_unlock;
5077 /* XXX: only do if device doesn't support rfkill irq */
5078 wiphy_rfkill_start_polling(hw->wiphy);
5081 mutex_unlock(&wl->mutex);
5084 * Configuration may have been overwritten during initialization.
5085 * Reload the configuration, but only if initialization was
5086 * successful. Reloading the configuration after a failed init
5087 * may hang the system.
5090 b43_op_config(hw, ~0);
5095 static void b43_op_stop(struct ieee80211_hw *hw)
5097 struct b43_wl *wl = hw_to_b43_wl(hw);
5098 struct b43_wldev *dev = wl->current_dev;
5100 cancel_work_sync(&(wl->beacon_update_trigger));
5105 mutex_lock(&wl->mutex);
5106 if (b43_status(dev) >= B43_STAT_STARTED) {
5107 dev = b43_wireless_core_stop(dev);
5111 b43_wireless_core_exit(dev);
5112 wl->radio_enabled = false;
5115 mutex_unlock(&wl->mutex);
5117 cancel_work_sync(&(wl->txpower_adjust_work));
5120 static int b43_op_beacon_set_tim(struct ieee80211_hw *hw,
5121 struct ieee80211_sta *sta, bool set)
5123 struct b43_wl *wl = hw_to_b43_wl(hw);
5125 b43_update_templates(wl);
5130 static void b43_op_sta_notify(struct ieee80211_hw *hw,
5131 struct ieee80211_vif *vif,
5132 enum sta_notify_cmd notify_cmd,
5133 struct ieee80211_sta *sta)
5135 struct b43_wl *wl = hw_to_b43_wl(hw);
5137 B43_WARN_ON(!vif || wl->vif != vif);
5140 static void b43_op_sw_scan_start_notifier(struct ieee80211_hw *hw,
5141 struct ieee80211_vif *vif,
5144 struct b43_wl *wl = hw_to_b43_wl(hw);
5145 struct b43_wldev *dev;
5147 mutex_lock(&wl->mutex);
5148 dev = wl->current_dev;
5149 if (dev && (b43_status(dev) >= B43_STAT_INITIALIZED)) {
5150 /* Disable CFP update during scan on other channels. */
5151 b43_hf_write(dev, b43_hf_read(dev) | B43_HF_SKCFPUP);
5153 mutex_unlock(&wl->mutex);
5156 static void b43_op_sw_scan_complete_notifier(struct ieee80211_hw *hw,
5157 struct ieee80211_vif *vif)
5159 struct b43_wl *wl = hw_to_b43_wl(hw);
5160 struct b43_wldev *dev;
5162 mutex_lock(&wl->mutex);
5163 dev = wl->current_dev;
5164 if (dev && (b43_status(dev) >= B43_STAT_INITIALIZED)) {
5165 /* Re-enable CFP update. */
5166 b43_hf_write(dev, b43_hf_read(dev) & ~B43_HF_SKCFPUP);
5168 mutex_unlock(&wl->mutex);
5171 static int b43_op_get_survey(struct ieee80211_hw *hw, int idx,
5172 struct survey_info *survey)
5174 struct b43_wl *wl = hw_to_b43_wl(hw);
5175 struct b43_wldev *dev = wl->current_dev;
5176 struct ieee80211_conf *conf = &hw->conf;
5181 survey->channel = conf->chandef.chan;
5182 survey->filled = SURVEY_INFO_NOISE_DBM;
5183 survey->noise = dev->stats.link_noise;
5188 static const struct ieee80211_ops b43_hw_ops = {
5190 .conf_tx = b43_op_conf_tx,
5191 .add_interface = b43_op_add_interface,
5192 .remove_interface = b43_op_remove_interface,
5193 .config = b43_op_config,
5194 .bss_info_changed = b43_op_bss_info_changed,
5195 .configure_filter = b43_op_configure_filter,
5196 .set_key = b43_op_set_key,
5197 .update_tkip_key = b43_op_update_tkip_key,
5198 .get_stats = b43_op_get_stats,
5199 .get_tsf = b43_op_get_tsf,
5200 .set_tsf = b43_op_set_tsf,
5201 .start = b43_op_start,
5202 .stop = b43_op_stop,
5203 .set_tim = b43_op_beacon_set_tim,
5204 .sta_notify = b43_op_sta_notify,
5205 .sw_scan_start = b43_op_sw_scan_start_notifier,
5206 .sw_scan_complete = b43_op_sw_scan_complete_notifier,
5207 .get_survey = b43_op_get_survey,
5208 .rfkill_poll = b43_rfkill_poll,
5211 /* Hard-reset the chip. Do not call this directly.
5212 * Use b43_controller_restart()
5214 static void b43_chip_reset(struct work_struct *work)
5216 struct b43_wldev *dev =
5217 container_of(work, struct b43_wldev, restart_work);
5218 struct b43_wl *wl = dev->wl;
5222 mutex_lock(&wl->mutex);
5224 prev_status = b43_status(dev);
5225 /* Bring the device down... */
5226 if (prev_status >= B43_STAT_STARTED) {
5227 dev = b43_wireless_core_stop(dev);
5233 if (prev_status >= B43_STAT_INITIALIZED)
5234 b43_wireless_core_exit(dev);
5236 /* ...and up again. */
5237 if (prev_status >= B43_STAT_INITIALIZED) {
5238 err = b43_wireless_core_init(dev);
5242 if (prev_status >= B43_STAT_STARTED) {
5243 err = b43_wireless_core_start(dev);
5245 b43_wireless_core_exit(dev);
5251 wl->current_dev = NULL; /* Failed to init the dev. */
5252 mutex_unlock(&wl->mutex);
5255 b43err(wl, "Controller restart FAILED\n");
5259 /* reload configuration */
5260 b43_op_config(wl->hw, ~0);
5262 b43_op_bss_info_changed(wl->hw, wl->vif, &wl->vif->bss_conf, ~0);
5264 b43info(wl, "Controller restarted\n");
5267 static int b43_setup_bands(struct b43_wldev *dev,
5268 bool have_2ghz_phy, bool have_5ghz_phy)
5270 struct ieee80211_hw *hw = dev->wl->hw;
5271 struct b43_phy *phy = &dev->phy;
5275 /* We don't support all 2 GHz channels on some devices */
5276 limited_2g = phy->radio_ver == 0x2057 &&
5277 (phy->radio_rev == 9 || phy->radio_rev == 14);
5278 limited_5g = phy->radio_ver == 0x2057 &&
5279 phy->radio_rev == 9;
5282 hw->wiphy->bands[NL80211_BAND_2GHZ] = limited_2g ?
5283 &b43_band_2ghz_limited : &b43_band_2GHz;
5284 if (dev->phy.type == B43_PHYTYPE_N) {
5286 hw->wiphy->bands[NL80211_BAND_5GHZ] = limited_5g ?
5287 &b43_band_5GHz_nphy_limited :
5288 &b43_band_5GHz_nphy;
5291 hw->wiphy->bands[NL80211_BAND_5GHZ] = &b43_band_5GHz_aphy;
5294 dev->phy.supports_2ghz = have_2ghz_phy;
5295 dev->phy.supports_5ghz = have_5ghz_phy;
5300 static void b43_wireless_core_detach(struct b43_wldev *dev)
5302 /* We release firmware that late to not be required to re-request
5303 * is all the time when we reinit the core. */
5304 b43_release_firmware(dev);
5308 static void b43_supported_bands(struct b43_wldev *dev, bool *have_2ghz_phy,
5309 bool *have_5ghz_phy)
5313 #ifdef CONFIG_B43_BCMA
5314 if (dev->dev->bus_type == B43_BUS_BCMA &&
5315 dev->dev->bdev->bus->hosttype == BCMA_HOSTTYPE_PCI)
5316 dev_id = dev->dev->bdev->bus->host_pci->device;
5318 #ifdef CONFIG_B43_SSB
5319 if (dev->dev->bus_type == B43_BUS_SSB &&
5320 dev->dev->sdev->bus->bustype == SSB_BUSTYPE_PCI)
5321 dev_id = dev->dev->sdev->bus->host_pci->device;
5323 /* Override with SPROM value if available */
5324 if (dev->dev->bus_sprom->dev_id)
5325 dev_id = dev->dev->bus_sprom->dev_id;
5327 /* Note: below IDs can be "virtual" (not maching e.g. real PCI ID) */
5329 case 0x4324: /* BCM4306 */
5330 case 0x4312: /* BCM4311 */
5331 case 0x4319: /* BCM4318 */
5332 case 0x4328: /* BCM4321 */
5333 case 0x432b: /* BCM4322 */
5334 case 0x4350: /* BCM43222 */
5335 case 0x4353: /* BCM43224 */
5336 case 0x0576: /* BCM43224 */
5337 case 0x435f: /* BCM6362 */
5338 case 0x4331: /* BCM4331 */
5339 case 0x4359: /* BCM43228 */
5340 case 0x43a0: /* BCM4360 */
5341 case 0x43b1: /* BCM4352 */
5342 /* Dual band devices */
5343 *have_2ghz_phy = true;
5344 *have_5ghz_phy = true;
5346 case 0x4321: /* BCM4306 */
5347 /* There are 14e4:4321 PCI devs with 2.4 GHz BCM4321 (N-PHY) */
5348 if (dev->phy.type != B43_PHYTYPE_G)
5351 case 0x4313: /* BCM4311 */
5352 case 0x431a: /* BCM4318 */
5353 case 0x432a: /* BCM4321 */
5354 case 0x432d: /* BCM4322 */
5355 case 0x4352: /* BCM43222 */
5356 case 0x435a: /* BCM43228 */
5357 case 0x4333: /* BCM4331 */
5358 case 0x43a2: /* BCM4360 */
5359 case 0x43b3: /* BCM4352 */
5360 /* 5 GHz only devices */
5361 *have_2ghz_phy = false;
5362 *have_5ghz_phy = true;
5366 /* As a fallback, try to guess using PHY type */
5367 switch (dev->phy.type) {
5370 case B43_PHYTYPE_LP:
5371 case B43_PHYTYPE_HT:
5372 case B43_PHYTYPE_LCN:
5373 *have_2ghz_phy = true;
5374 *have_5ghz_phy = false;
5381 static int b43_wireless_core_attach(struct b43_wldev *dev)
5383 struct b43_wl *wl = dev->wl;
5384 struct b43_phy *phy = &dev->phy;
5387 bool have_2ghz_phy = false, have_5ghz_phy = false;
5389 /* Do NOT do any device initialization here.
5390 * Do it in wireless_core_init() instead.
5391 * This function is for gathering basic information about the HW, only.
5392 * Also some structs may be set up here. But most likely you want to have
5393 * that in core_init(), too.
5396 err = b43_bus_powerup(dev, 0);
5398 b43err(wl, "Bus powerup failed\n");
5402 phy->do_full_init = true;
5404 /* Try to guess supported bands for the first init needs */
5405 switch (dev->dev->bus_type) {
5406 #ifdef CONFIG_B43_BCMA
5408 tmp = bcma_aread32(dev->dev->bdev, BCMA_IOST);
5409 have_2ghz_phy = !!(tmp & B43_BCMA_IOST_2G_PHY);
5410 have_5ghz_phy = !!(tmp & B43_BCMA_IOST_5G_PHY);
5413 #ifdef CONFIG_B43_SSB
5415 if (dev->dev->core_rev >= 5) {
5416 tmp = ssb_read32(dev->dev->sdev, SSB_TMSHIGH);
5417 have_2ghz_phy = !!(tmp & B43_TMSHIGH_HAVE_2GHZ_PHY);
5418 have_5ghz_phy = !!(tmp & B43_TMSHIGH_HAVE_5GHZ_PHY);
5425 dev->phy.gmode = have_2ghz_phy;
5426 b43_wireless_core_reset(dev, dev->phy.gmode);
5428 /* Get the PHY type. */
5429 err = b43_phy_versioning(dev);
5433 /* Get real info about supported bands */
5434 b43_supported_bands(dev, &have_2ghz_phy, &have_5ghz_phy);
5436 /* We don't support 5 GHz on some PHYs yet */
5437 if (have_5ghz_phy) {
5438 switch (dev->phy.type) {
5440 case B43_PHYTYPE_LP:
5441 case B43_PHYTYPE_HT:
5442 b43warn(wl, "5 GHz band is unsupported on this PHY\n");
5443 have_5ghz_phy = false;
5447 if (!have_2ghz_phy && !have_5ghz_phy) {
5448 b43err(wl, "b43 can't support any band on this device\n");
5453 err = b43_phy_allocate(dev);
5457 dev->phy.gmode = have_2ghz_phy;
5458 b43_wireless_core_reset(dev, dev->phy.gmode);
5460 err = b43_validate_chipaccess(dev);
5463 err = b43_setup_bands(dev, have_2ghz_phy, have_5ghz_phy);
5467 /* Now set some default "current_dev" */
5468 if (!wl->current_dev)
5469 wl->current_dev = dev;
5470 INIT_WORK(&dev->restart_work, b43_chip_reset);
5472 dev->phy.ops->switch_analog(dev, 0);
5473 b43_device_disable(dev, 0);
5474 b43_bus_may_powerdown(dev);
5482 b43_bus_may_powerdown(dev);
5486 static void b43_one_core_detach(struct b43_bus_dev *dev)
5488 struct b43_wldev *wldev;
5490 /* Do not cancel ieee80211-workqueue based work here.
5491 * See comment in b43_remove(). */
5493 wldev = b43_bus_get_wldev(dev);
5494 b43_debugfs_remove_device(wldev);
5495 b43_wireless_core_detach(wldev);
5496 list_del(&wldev->list);
5497 b43_bus_set_wldev(dev, NULL);
5501 static int b43_one_core_attach(struct b43_bus_dev *dev, struct b43_wl *wl)
5503 struct b43_wldev *wldev;
5506 wldev = kzalloc(sizeof(*wldev), GFP_KERNEL);
5510 wldev->use_pio = b43_modparam_pio;
5513 b43_set_status(wldev, B43_STAT_UNINIT);
5514 wldev->bad_frames_preempt = modparam_bad_frames_preempt;
5515 INIT_LIST_HEAD(&wldev->list);
5517 err = b43_wireless_core_attach(wldev);
5519 goto err_kfree_wldev;
5521 b43_bus_set_wldev(dev, wldev);
5522 b43_debugfs_add_device(wldev);
5532 #define IS_PDEV(pdev, _vendor, _device, _subvendor, _subdevice) ( \
5533 (pdev->vendor == PCI_VENDOR_ID_##_vendor) && \
5534 (pdev->device == _device) && \
5535 (pdev->subsystem_vendor == PCI_VENDOR_ID_##_subvendor) && \
5536 (pdev->subsystem_device == _subdevice) )
5538 #ifdef CONFIG_B43_SSB
5539 static void b43_sprom_fixup(struct ssb_bus *bus)
5541 struct pci_dev *pdev;
5543 /* boardflags workarounds */
5544 if (bus->boardinfo.vendor == SSB_BOARDVENDOR_DELL &&
5545 bus->chip_id == 0x4301 && bus->sprom.board_rev == 0x74)
5546 bus->sprom.boardflags_lo |= B43_BFL_BTCOEXIST;
5547 if (bus->boardinfo.vendor == PCI_VENDOR_ID_APPLE &&
5548 bus->boardinfo.type == 0x4E && bus->sprom.board_rev > 0x40)
5549 bus->sprom.boardflags_lo |= B43_BFL_PACTRL;
5550 if (bus->bustype == SSB_BUSTYPE_PCI) {
5551 pdev = bus->host_pci;
5552 if (IS_PDEV(pdev, BROADCOM, 0x4318, ASUSTEK, 0x100F) ||
5553 IS_PDEV(pdev, BROADCOM, 0x4320, DELL, 0x0003) ||
5554 IS_PDEV(pdev, BROADCOM, 0x4320, HP, 0x12f8) ||
5555 IS_PDEV(pdev, BROADCOM, 0x4320, LINKSYS, 0x0015) ||
5556 IS_PDEV(pdev, BROADCOM, 0x4320, LINKSYS, 0x0014) ||
5557 IS_PDEV(pdev, BROADCOM, 0x4320, LINKSYS, 0x0013) ||
5558 IS_PDEV(pdev, BROADCOM, 0x4320, MOTOROLA, 0x7010))
5559 bus->sprom.boardflags_lo &= ~B43_BFL_BTCOEXIST;
5563 static void b43_wireless_exit(struct b43_bus_dev *dev, struct b43_wl *wl)
5565 struct ieee80211_hw *hw = wl->hw;
5567 ssb_set_devtypedata(dev->sdev, NULL);
5568 ieee80211_free_hw(hw);
5572 static struct b43_wl *b43_wireless_init(struct b43_bus_dev *dev)
5574 struct ssb_sprom *sprom = dev->bus_sprom;
5575 struct ieee80211_hw *hw;
5580 hw = ieee80211_alloc_hw(sizeof(*wl), &b43_hw_ops);
5582 b43err(NULL, "Could not allocate ieee80211 device\n");
5583 return ERR_PTR(-ENOMEM);
5585 wl = hw_to_b43_wl(hw);
5588 ieee80211_hw_set(hw, RX_INCLUDES_FCS);
5589 ieee80211_hw_set(hw, SIGNAL_DBM);
5591 hw->wiphy->interface_modes =
5592 BIT(NL80211_IFTYPE_AP) |
5593 BIT(NL80211_IFTYPE_MESH_POINT) |
5594 BIT(NL80211_IFTYPE_STATION) |
5595 #ifdef CONFIG_WIRELESS_WDS
5596 BIT(NL80211_IFTYPE_WDS) |
5598 BIT(NL80211_IFTYPE_ADHOC);
5600 hw->wiphy->flags |= WIPHY_FLAG_IBSS_RSN;
5602 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_CQM_RSSI_LIST);
5604 wl->hw_registered = false;
5606 SET_IEEE80211_DEV(hw, dev->dev);
5607 if (is_valid_ether_addr(sprom->et1mac))
5608 SET_IEEE80211_PERM_ADDR(hw, sprom->et1mac);
5610 SET_IEEE80211_PERM_ADDR(hw, sprom->il0mac);
5612 /* Initialize struct b43_wl */
5614 mutex_init(&wl->mutex);
5615 spin_lock_init(&wl->hardirq_lock);
5616 spin_lock_init(&wl->beacon_lock);
5617 INIT_WORK(&wl->beacon_update_trigger, b43_beacon_update_trigger_work);
5618 INIT_WORK(&wl->txpower_adjust_work, b43_phy_txpower_adjust_work);
5619 INIT_WORK(&wl->tx_work, b43_tx_work);
5621 /* Initialize queues and flags. */
5622 for (queue_num = 0; queue_num < B43_QOS_QUEUE_NUM; queue_num++) {
5623 skb_queue_head_init(&wl->tx_queue[queue_num]);
5624 wl->tx_queue_stopped[queue_num] = 0;
5627 snprintf(chip_name, ARRAY_SIZE(chip_name),
5628 (dev->chip_id > 0x9999) ? "%d" : "%04X", dev->chip_id);
5629 b43info(wl, "Broadcom %s WLAN found (core revision %u)\n", chip_name,
5634 #ifdef CONFIG_B43_BCMA
5635 static int b43_bcma_probe(struct bcma_device *core)
5637 struct b43_bus_dev *dev;
5641 if (!modparam_allhwsupport &&
5642 (core->id.rev == 0x17 || core->id.rev == 0x18)) {
5643 pr_err("Support for cores revisions 0x17 and 0x18 disabled by module param allhwsupport=0. Try b43.allhwsupport=1\n");
5647 dev = b43_bus_dev_bcma_init(core);
5651 wl = b43_wireless_init(dev);
5657 err = b43_one_core_attach(dev, wl);
5659 goto bcma_err_wireless_exit;
5661 /* setup and start work to load firmware */
5662 INIT_WORK(&wl->firmware_load, b43_request_firmware);
5663 schedule_work(&wl->firmware_load);
5667 bcma_err_wireless_exit:
5668 ieee80211_free_hw(wl->hw);
5674 static void b43_bcma_remove(struct bcma_device *core)
5676 struct b43_wldev *wldev = bcma_get_drvdata(core);
5677 struct b43_wl *wl = wldev->wl;
5679 /* We must cancel any work here before unregistering from ieee80211,
5680 * as the ieee80211 unreg will destroy the workqueue. */
5681 cancel_work_sync(&wldev->restart_work);
5682 cancel_work_sync(&wl->firmware_load);
5685 if (!wldev->fw.ucode.data)
5686 return; /* NULL if firmware never loaded */
5687 if (wl->current_dev == wldev && wl->hw_registered) {
5688 b43_leds_stop(wldev);
5689 ieee80211_unregister_hw(wl->hw);
5692 b43_one_core_detach(wldev->dev);
5694 /* Unregister HW RNG driver */
5697 b43_leds_unregister(wl);
5698 ieee80211_free_hw(wl->hw);
5702 static struct bcma_driver b43_bcma_driver = {
5703 .name = KBUILD_MODNAME,
5704 .id_table = b43_bcma_tbl,
5705 .probe = b43_bcma_probe,
5706 .remove = b43_bcma_remove,
5710 #ifdef CONFIG_B43_SSB
5712 int b43_ssb_probe(struct ssb_device *sdev, const struct ssb_device_id *id)
5714 struct b43_bus_dev *dev;
5718 dev = b43_bus_dev_ssb_init(sdev);
5722 wl = ssb_get_devtypedata(sdev);
5724 b43err(NULL, "Dual-core devices are not supported\n");
5726 goto err_ssb_kfree_dev;
5729 b43_sprom_fixup(sdev->bus);
5731 wl = b43_wireless_init(dev);
5734 goto err_ssb_kfree_dev;
5736 ssb_set_devtypedata(sdev, wl);
5737 B43_WARN_ON(ssb_get_devtypedata(sdev) != wl);
5739 err = b43_one_core_attach(dev, wl);
5741 goto err_ssb_wireless_exit;
5743 /* setup and start work to load firmware */
5744 INIT_WORK(&wl->firmware_load, b43_request_firmware);
5745 schedule_work(&wl->firmware_load);
5749 err_ssb_wireless_exit:
5750 b43_wireless_exit(dev, wl);
5756 static void b43_ssb_remove(struct ssb_device *sdev)
5758 struct b43_wl *wl = ssb_get_devtypedata(sdev);
5759 struct b43_wldev *wldev = ssb_get_drvdata(sdev);
5760 struct b43_bus_dev *dev = wldev->dev;
5762 /* We must cancel any work here before unregistering from ieee80211,
5763 * as the ieee80211 unreg will destroy the workqueue. */
5764 cancel_work_sync(&wldev->restart_work);
5765 cancel_work_sync(&wl->firmware_load);
5768 if (!wldev->fw.ucode.data)
5769 return; /* NULL if firmware never loaded */
5770 if (wl->current_dev == wldev && wl->hw_registered) {
5771 b43_leds_stop(wldev);
5772 ieee80211_unregister_hw(wl->hw);
5775 b43_one_core_detach(dev);
5777 /* Unregister HW RNG driver */
5780 b43_leds_unregister(wl);
5781 b43_wireless_exit(dev, wl);
5785 static struct ssb_driver b43_ssb_driver = {
5786 .name = KBUILD_MODNAME,
5787 .id_table = b43_ssb_tbl,
5788 .probe = b43_ssb_probe,
5789 .remove = b43_ssb_remove,
5791 #endif /* CONFIG_B43_SSB */
5793 /* Perform a hardware reset. This can be called from any context. */
5794 void b43_controller_restart(struct b43_wldev *dev, const char *reason)
5796 /* Must avoid requeueing, if we are in shutdown. */
5797 if (b43_status(dev) < B43_STAT_INITIALIZED)
5799 b43info(dev->wl, "Controller RESET (%s) ...\n", reason);
5800 ieee80211_queue_work(dev->wl->hw, &dev->restart_work);
5803 static void b43_print_driverinfo(void)
5805 const char *feat_pci = "", *feat_pcmcia = "", *feat_nphy = "",
5806 *feat_leds = "", *feat_sdio = "";
5808 #ifdef CONFIG_B43_PCI_AUTOSELECT
5811 #ifdef CONFIG_B43_PCMCIA
5814 #ifdef CONFIG_B43_PHY_N
5817 #ifdef CONFIG_B43_LEDS
5820 #ifdef CONFIG_B43_SDIO
5823 printk(KERN_INFO "Broadcom 43xx driver loaded "
5824 "[ Features: %s%s%s%s%s ]\n",
5825 feat_pci, feat_pcmcia, feat_nphy,
5826 feat_leds, feat_sdio);
5829 static int __init b43_init(void)
5834 err = b43_sdio_init();
5837 #ifdef CONFIG_B43_BCMA
5838 err = bcma_driver_register(&b43_bcma_driver);
5842 #ifdef CONFIG_B43_SSB
5843 err = ssb_driver_register(&b43_ssb_driver);
5845 goto err_bcma_driver_exit;
5847 b43_print_driverinfo();
5851 #ifdef CONFIG_B43_SSB
5852 err_bcma_driver_exit:
5854 #ifdef CONFIG_B43_BCMA
5855 bcma_driver_unregister(&b43_bcma_driver);
5864 static void __exit b43_exit(void)
5866 #ifdef CONFIG_B43_SSB
5867 ssb_driver_unregister(&b43_ssb_driver);
5869 #ifdef CONFIG_B43_BCMA
5870 bcma_driver_unregister(&b43_bcma_driver);
5876 module_init(b43_init)
5877 module_exit(b43_exit)
projects / linux.git / blob