Gitiles
Code Review Sign In
192.168.1.100 / T108 / e958203796650e3959a43708d67534bf36f4c83b / . / marvell / linux / drivers / net / wireless / broadcom / b43 / main.c
blob: e466324a1fd24d76cd7a0bddffddfb2554205697 [file] [log] [blame]
b.liue9582032025-04-17 19:18:16 +0800[diff] [blame^]1// SPDX-License-Identifier: GPL-2.0-or-later
2/*
3
4 Broadcom B43 wireless driver
5
6 Copyright (c) 2005 Martin Langer <martin-langer@gmx.de>
7 Copyright (c) 2005 Stefano Brivio <stefano.brivio@polimi.it>
8 Copyright (c) 2005-2009 Michael Buesch <m@bues.ch>
9 Copyright (c) 2005 Danny van Dyk <kugelfang@gentoo.org>
10 Copyright (c) 2005 Andreas Jaggi <andreas.jaggi@waterwave.ch>
11 Copyright (c) 2010-2011 Rafał Miłecki <zajec5@gmail.com>
12
13 SDIO support
14 Copyright (c) 2009 Albert Herranz <albert_herranz@yahoo.es>
15
16 Some parts of the code in this file are derived from the ipw2200
17 driver Copyright(c) 2003 - 2004 Intel Corporation.
18
19
20*/
21
22#include <linux/delay.h>
23#include <linux/init.h>
24#include <linux/module.h>
25#include <linux/if_arp.h>
26#include <linux/etherdevice.h>
27#include <linux/firmware.h>
28#include <linux/workqueue.h>
29#include <linux/skbuff.h>
30#include <linux/io.h>
31#include <linux/dma-mapping.h>
32#include <linux/slab.h>
33#include <asm/unaligned.h>
34
35#include "b43.h"
36#include "main.h"
37#include "debugfs.h"
38#include "phy_common.h"
39#include "phy_g.h"
40#include "phy_n.h"
41#include "dma.h"
42#include "pio.h"
43#include "sysfs.h"
44#include "xmit.h"
45#include "lo.h"
46#include "sdio.h"
47#include <linux/mmc/sdio_func.h>
48
49MODULE_DESCRIPTION("Broadcom B43 wireless driver");
50MODULE_AUTHOR("Martin Langer");
51MODULE_AUTHOR("Stefano Brivio");
52MODULE_AUTHOR("Michael Buesch");
53MODULE_AUTHOR("Gábor Stefanik");
54MODULE_AUTHOR("Rafał Miłecki");
55MODULE_LICENSE("GPL");
56
57MODULE_FIRMWARE("b43/ucode11.fw");
58MODULE_FIRMWARE("b43/ucode13.fw");
59MODULE_FIRMWARE("b43/ucode14.fw");
60MODULE_FIRMWARE("b43/ucode15.fw");
61MODULE_FIRMWARE("b43/ucode16_lp.fw");
62MODULE_FIRMWARE("b43/ucode16_mimo.fw");
63MODULE_FIRMWARE("b43/ucode24_lcn.fw");
64MODULE_FIRMWARE("b43/ucode25_lcn.fw");
65MODULE_FIRMWARE("b43/ucode25_mimo.fw");
66MODULE_FIRMWARE("b43/ucode26_mimo.fw");
67MODULE_FIRMWARE("b43/ucode29_mimo.fw");
68MODULE_FIRMWARE("b43/ucode33_lcn40.fw");
69MODULE_FIRMWARE("b43/ucode30_mimo.fw");
70MODULE_FIRMWARE("b43/ucode5.fw");
71MODULE_FIRMWARE("b43/ucode40.fw");
72MODULE_FIRMWARE("b43/ucode42.fw");
73MODULE_FIRMWARE("b43/ucode9.fw");
74
75static int modparam_bad_frames_preempt;
76module_param_named(bad_frames_preempt, modparam_bad_frames_preempt, int, 0444);
77MODULE_PARM_DESC(bad_frames_preempt,
78 "enable(1) / disable(0) Bad Frames Preemption");
79
80static char modparam_fwpostfix[16];
81module_param_string(fwpostfix, modparam_fwpostfix, 16, 0444);
82MODULE_PARM_DESC(fwpostfix, "Postfix for the .fw files to load.");
83
84static int modparam_hwpctl;
85module_param_named(hwpctl, modparam_hwpctl, int, 0444);
86MODULE_PARM_DESC(hwpctl, "Enable hardware-side power control (default off)");
87
88static int modparam_nohwcrypt;
89module_param_named(nohwcrypt, modparam_nohwcrypt, int, 0444);
90MODULE_PARM_DESC(nohwcrypt, "Disable hardware encryption.");
91
92static int modparam_hwtkip;
93module_param_named(hwtkip, modparam_hwtkip, int, 0444);
94MODULE_PARM_DESC(hwtkip, "Enable hardware tkip.");
95
96static int modparam_qos = 1;
97module_param_named(qos, modparam_qos, int, 0444);
98MODULE_PARM_DESC(qos, "Enable QOS support (default on)");
99
100static int modparam_btcoex = 1;
101module_param_named(btcoex, modparam_btcoex, int, 0444);
102MODULE_PARM_DESC(btcoex, "Enable Bluetooth coexistence (default on)");
103
104int b43_modparam_verbose = B43_VERBOSITY_DEFAULT;
105module_param_named(verbose, b43_modparam_verbose, int, 0644);
106MODULE_PARM_DESC(verbose, "Log message verbosity: 0=error, 1=warn, 2=info(default), 3=debug");
107
108static int b43_modparam_pio = 0;
109module_param_named(pio, b43_modparam_pio, int, 0644);
110MODULE_PARM_DESC(pio, "Use PIO accesses by default: 0=DMA, 1=PIO");
111
112static int modparam_allhwsupport = !IS_ENABLED(CONFIG_BRCMSMAC);
113module_param_named(allhwsupport, modparam_allhwsupport, int, 0444);
114MODULE_PARM_DESC(allhwsupport, "Enable support for all hardware (even it if overlaps with the brcmsmac driver)");
115
116#ifdef CONFIG_B43_BCMA
117static const struct bcma_device_id b43_bcma_tbl[] = {
118 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x11, BCMA_ANY_CLASS),
119 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x15, BCMA_ANY_CLASS),
120 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x17, BCMA_ANY_CLASS),
121 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x18, BCMA_ANY_CLASS),
122 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x1C, BCMA_ANY_CLASS),
123 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x1D, BCMA_ANY_CLASS),
124 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x1E, BCMA_ANY_CLASS),
125 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x28, BCMA_ANY_CLASS),
126 BCMA_CORE(BCMA_MANUF_BCM, BCMA_CORE_80211, 0x2A, BCMA_ANY_CLASS),
127 {},
128};
129MODULE_DEVICE_TABLE(bcma, b43_bcma_tbl);
130#endif
131
132#ifdef CONFIG_B43_SSB
133static const struct ssb_device_id b43_ssb_tbl[] = {
134 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 5),
135 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 6),
136 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 7),
137 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 9),
138 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 10),
139 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 11),
140 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 12),
141 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 13),
142 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 15),
143 SSB_DEVICE(SSB_VENDOR_BROADCOM, SSB_DEV_80211, 16),
144 {},
145};
146MODULE_DEVICE_TABLE(ssb, b43_ssb_tbl);
147#endif
148
149/* Channel and ratetables are shared for all devices.
150 * They can't be const, because ieee80211 puts some precalculated
151 * data in there. This data is the same for all devices, so we don't
152 * get concurrency issues */
153#define RATETAB_ENT(_rateid, _flags) \
154 { \
155 .bitrate = B43_RATE_TO_BASE100KBPS(_rateid), \
156 .hw_value = (_rateid), \
157 .flags = (_flags), \
158 }
159
160/*
161 * NOTE: When changing this, sync with xmit.c's
162 * b43_plcp_get_bitrate_idx_* functions!
163 */
164static struct ieee80211_rate __b43_ratetable[] = {
165 RATETAB_ENT(B43_CCK_RATE_1MB, 0),
166 RATETAB_ENT(B43_CCK_RATE_2MB, IEEE80211_RATE_SHORT_PREAMBLE),
167 RATETAB_ENT(B43_CCK_RATE_5MB, IEEE80211_RATE_SHORT_PREAMBLE),
168 RATETAB_ENT(B43_CCK_RATE_11MB, IEEE80211_RATE_SHORT_PREAMBLE),
169 RATETAB_ENT(B43_OFDM_RATE_6MB, 0),
170 RATETAB_ENT(B43_OFDM_RATE_9MB, 0),
171 RATETAB_ENT(B43_OFDM_RATE_12MB, 0),
172 RATETAB_ENT(B43_OFDM_RATE_18MB, 0),
173 RATETAB_ENT(B43_OFDM_RATE_24MB, 0),
174 RATETAB_ENT(B43_OFDM_RATE_36MB, 0),
175 RATETAB_ENT(B43_OFDM_RATE_48MB, 0),
176 RATETAB_ENT(B43_OFDM_RATE_54MB, 0),
177};
178
179#define b43_a_ratetable (__b43_ratetable + 4)
180#define b43_a_ratetable_size 8
181#define b43_b_ratetable (__b43_ratetable + 0)
182#define b43_b_ratetable_size 4
183#define b43_g_ratetable (__b43_ratetable + 0)
184#define b43_g_ratetable_size 12
185
186#define CHAN2G(_channel, _freq, _flags) { \
187 .band = NL80211_BAND_2GHZ, \
188 .center_freq = (_freq), \
189 .hw_value = (_channel), \
190 .flags = (_flags), \
191 .max_antenna_gain = 0, \
192 .max_power = 30, \
193}
194static struct ieee80211_channel b43_2ghz_chantable[] = {
195 CHAN2G(1, 2412, 0),
196 CHAN2G(2, 2417, 0),
197 CHAN2G(3, 2422, 0),
198 CHAN2G(4, 2427, 0),
199 CHAN2G(5, 2432, 0),
200 CHAN2G(6, 2437, 0),
201 CHAN2G(7, 2442, 0),
202 CHAN2G(8, 2447, 0),
203 CHAN2G(9, 2452, 0),
204 CHAN2G(10, 2457, 0),
205 CHAN2G(11, 2462, 0),
206 CHAN2G(12, 2467, 0),
207 CHAN2G(13, 2472, 0),
208 CHAN2G(14, 2484, 0),
209};
210
211/* No support for the last 3 channels (12, 13, 14) */
212#define b43_2ghz_chantable_limited_size 11
213#undef CHAN2G
214
215#define CHAN4G(_channel, _flags) { \
216 .band = NL80211_BAND_5GHZ, \
217 .center_freq = 4000 + (5 * (_channel)), \
218 .hw_value = (_channel), \
219 .flags = (_flags), \
220 .max_antenna_gain = 0, \
221 .max_power = 30, \
222}
223#define CHAN5G(_channel, _flags) { \
224 .band = NL80211_BAND_5GHZ, \
225 .center_freq = 5000 + (5 * (_channel)), \
226 .hw_value = (_channel), \
227 .flags = (_flags), \
228 .max_antenna_gain = 0, \
229 .max_power = 30, \
230}
231static struct ieee80211_channel b43_5ghz_nphy_chantable[] = {
232 CHAN4G(184, 0), CHAN4G(186, 0),
233 CHAN4G(188, 0), CHAN4G(190, 0),
234 CHAN4G(192, 0), CHAN4G(194, 0),
235 CHAN4G(196, 0), CHAN4G(198, 0),
236 CHAN4G(200, 0), CHAN4G(202, 0),
237 CHAN4G(204, 0), CHAN4G(206, 0),
238 CHAN4G(208, 0), CHAN4G(210, 0),
239 CHAN4G(212, 0), CHAN4G(214, 0),
240 CHAN4G(216, 0), CHAN4G(218, 0),
241 CHAN4G(220, 0), CHAN4G(222, 0),
242 CHAN4G(224, 0), CHAN4G(226, 0),
243 CHAN4G(228, 0),
244 CHAN5G(32, 0), CHAN5G(34, 0),
245 CHAN5G(36, 0), CHAN5G(38, 0),
246 CHAN5G(40, 0), CHAN5G(42, 0),
247 CHAN5G(44, 0), CHAN5G(46, 0),
248 CHAN5G(48, 0), CHAN5G(50, 0),
249 CHAN5G(52, 0), CHAN5G(54, 0),
250 CHAN5G(56, 0), CHAN5G(58, 0),
251 CHAN5G(60, 0), CHAN5G(62, 0),
252 CHAN5G(64, 0), CHAN5G(66, 0),
253 CHAN5G(68, 0), CHAN5G(70, 0),
254 CHAN5G(72, 0), CHAN5G(74, 0),
255 CHAN5G(76, 0), CHAN5G(78, 0),
256 CHAN5G(80, 0), CHAN5G(82, 0),
257 CHAN5G(84, 0), CHAN5G(86, 0),
258 CHAN5G(88, 0), CHAN5G(90, 0),
259 CHAN5G(92, 0), CHAN5G(94, 0),
260 CHAN5G(96, 0), CHAN5G(98, 0),
261 CHAN5G(100, 0), CHAN5G(102, 0),
262 CHAN5G(104, 0), CHAN5G(106, 0),
263 CHAN5G(108, 0), CHAN5G(110, 0),
264 CHAN5G(112, 0), CHAN5G(114, 0),
265 CHAN5G(116, 0), CHAN5G(118, 0),
266 CHAN5G(120, 0), CHAN5G(122, 0),
267 CHAN5G(124, 0), CHAN5G(126, 0),
268 CHAN5G(128, 0), CHAN5G(130, 0),
269 CHAN5G(132, 0), CHAN5G(134, 0),
270 CHAN5G(136, 0), CHAN5G(138, 0),
271 CHAN5G(140, 0), CHAN5G(142, 0),
272 CHAN5G(144, 0), CHAN5G(145, 0),
273 CHAN5G(146, 0), CHAN5G(147, 0),
274 CHAN5G(148, 0), CHAN5G(149, 0),
275 CHAN5G(150, 0), CHAN5G(151, 0),
276 CHAN5G(152, 0), CHAN5G(153, 0),
277 CHAN5G(154, 0), CHAN5G(155, 0),
278 CHAN5G(156, 0), CHAN5G(157, 0),
279 CHAN5G(158, 0), CHAN5G(159, 0),
280 CHAN5G(160, 0), CHAN5G(161, 0),
281 CHAN5G(162, 0), CHAN5G(163, 0),
282 CHAN5G(164, 0), CHAN5G(165, 0),
283 CHAN5G(166, 0), CHAN5G(168, 0),
284 CHAN5G(170, 0), CHAN5G(172, 0),
285 CHAN5G(174, 0), CHAN5G(176, 0),
286 CHAN5G(178, 0), CHAN5G(180, 0),
287 CHAN5G(182, 0),
288};
289
290static struct ieee80211_channel b43_5ghz_nphy_chantable_limited[] = {
291 CHAN5G(36, 0), CHAN5G(40, 0),
292 CHAN5G(44, 0), CHAN5G(48, 0),
293 CHAN5G(149, 0), CHAN5G(153, 0),
294 CHAN5G(157, 0), CHAN5G(161, 0),
295 CHAN5G(165, 0),
296};
297
298static struct ieee80211_channel b43_5ghz_aphy_chantable[] = {
299 CHAN5G(34, 0), CHAN5G(36, 0),
300 CHAN5G(38, 0), CHAN5G(40, 0),
301 CHAN5G(42, 0), CHAN5G(44, 0),
302 CHAN5G(46, 0), CHAN5G(48, 0),
303 CHAN5G(52, 0), CHAN5G(56, 0),
304 CHAN5G(60, 0), CHAN5G(64, 0),
305 CHAN5G(100, 0), CHAN5G(104, 0),
306 CHAN5G(108, 0), CHAN5G(112, 0),
307 CHAN5G(116, 0), CHAN5G(120, 0),
308 CHAN5G(124, 0), CHAN5G(128, 0),
309 CHAN5G(132, 0), CHAN5G(136, 0),
310 CHAN5G(140, 0), CHAN5G(149, 0),
311 CHAN5G(153, 0), CHAN5G(157, 0),
312 CHAN5G(161, 0), CHAN5G(165, 0),
313 CHAN5G(184, 0), CHAN5G(188, 0),
314 CHAN5G(192, 0), CHAN5G(196, 0),
315 CHAN5G(200, 0), CHAN5G(204, 0),
316 CHAN5G(208, 0), CHAN5G(212, 0),
317 CHAN5G(216, 0),
318};
319#undef CHAN4G
320#undef CHAN5G
321
322static struct ieee80211_supported_band b43_band_5GHz_nphy = {
323 .band = NL80211_BAND_5GHZ,
324 .channels = b43_5ghz_nphy_chantable,
325 .n_channels = ARRAY_SIZE(b43_5ghz_nphy_chantable),
326 .bitrates = b43_a_ratetable,
327 .n_bitrates = b43_a_ratetable_size,
328};
329
330static struct ieee80211_supported_band b43_band_5GHz_nphy_limited = {
331 .band = NL80211_BAND_5GHZ,
332 .channels = b43_5ghz_nphy_chantable_limited,
333 .n_channels = ARRAY_SIZE(b43_5ghz_nphy_chantable_limited),
334 .bitrates = b43_a_ratetable,
335 .n_bitrates = b43_a_ratetable_size,
336};
337
338static struct ieee80211_supported_band b43_band_5GHz_aphy = {
339 .band = NL80211_BAND_5GHZ,
340 .channels = b43_5ghz_aphy_chantable,
341 .n_channels = ARRAY_SIZE(b43_5ghz_aphy_chantable),
342 .bitrates = b43_a_ratetable,
343 .n_bitrates = b43_a_ratetable_size,
344};
345
346static struct ieee80211_supported_band b43_band_2GHz = {
347 .band = NL80211_BAND_2GHZ,
348 .channels = b43_2ghz_chantable,
349 .n_channels = ARRAY_SIZE(b43_2ghz_chantable),
350 .bitrates = b43_g_ratetable,
351 .n_bitrates = b43_g_ratetable_size,
352};
353
354static struct ieee80211_supported_band b43_band_2ghz_limited = {
355 .band = NL80211_BAND_2GHZ,
356 .channels = b43_2ghz_chantable,
357 .n_channels = b43_2ghz_chantable_limited_size,
358 .bitrates = b43_g_ratetable,
359 .n_bitrates = b43_g_ratetable_size,
360};
361
362static void b43_wireless_core_exit(struct b43_wldev *dev);
363static int b43_wireless_core_init(struct b43_wldev *dev);
364static struct b43_wldev * b43_wireless_core_stop(struct b43_wldev *dev);
365static int b43_wireless_core_start(struct b43_wldev *dev);
366static void b43_op_bss_info_changed(struct ieee80211_hw *hw,
367 struct ieee80211_vif *vif,
368 struct ieee80211_bss_conf *conf,
369 u32 changed);
370
371static int b43_ratelimit(struct b43_wl *wl)
372{
373 if (!wl || !wl->current_dev)
374 return 1;
375 if (b43_status(wl->current_dev) < B43_STAT_STARTED)
376 return 1;
377 /* We are up and running.
378 * Ratelimit the messages to avoid DoS over the net. */
379 return net_ratelimit();
380}
381
382void b43info(struct b43_wl *wl, const char *fmt, ...)
383{
384 struct va_format vaf;
385 va_list args;
386
387 if (b43_modparam_verbose < B43_VERBOSITY_INFO)
388 return;
389 if (!b43_ratelimit(wl))
390 return;
391
392 va_start(args, fmt);
393
394 vaf.fmt = fmt;
395 vaf.va = &args;
396
397 printk(KERN_INFO "b43-%s: %pV",
398 (wl && wl->hw) ? wiphy_name(wl->hw->wiphy) : "wlan", &vaf);
399
400 va_end(args);
401}
402
403void b43err(struct b43_wl *wl, const char *fmt, ...)
404{
405 struct va_format vaf;
406 va_list args;
407
408 if (b43_modparam_verbose < B43_VERBOSITY_ERROR)
409 return;
410 if (!b43_ratelimit(wl))
411 return;
412
413 va_start(args, fmt);
414
415 vaf.fmt = fmt;
416 vaf.va = &args;
417
418 printk(KERN_ERR "b43-%s ERROR: %pV",
419 (wl && wl->hw) ? wiphy_name(wl->hw->wiphy) : "wlan", &vaf);
420
421 va_end(args);
422}
423
424void b43warn(struct b43_wl *wl, const char *fmt, ...)
425{
426 struct va_format vaf;
427 va_list args;
428
429 if (b43_modparam_verbose < B43_VERBOSITY_WARN)
430 return;
431 if (!b43_ratelimit(wl))
432 return;
433
434 va_start(args, fmt);
435
436 vaf.fmt = fmt;
437 vaf.va = &args;
438
439 printk(KERN_WARNING "b43-%s warning: %pV",
440 (wl && wl->hw) ? wiphy_name(wl->hw->wiphy) : "wlan", &vaf);
441
442 va_end(args);
443}
444
445void b43dbg(struct b43_wl *wl, const char *fmt, ...)
446{
447 struct va_format vaf;
448 va_list args;
449
450 if (b43_modparam_verbose < B43_VERBOSITY_DEBUG)
451 return;
452
453 va_start(args, fmt);
454
455 vaf.fmt = fmt;
456 vaf.va = &args;
457
458 printk(KERN_DEBUG "b43-%s debug: %pV",
459 (wl && wl->hw) ? wiphy_name(wl->hw->wiphy) : "wlan", &vaf);
460
461 va_end(args);
462}
463
464static void b43_ram_write(struct b43_wldev *dev, u16 offset, u32 val)
465{
466 u32 macctl;
467
468 B43_WARN_ON(offset % 4 != 0);
469
470 macctl = b43_read32(dev, B43_MMIO_MACCTL);
471 if (macctl & B43_MACCTL_BE)
472 val = swab32(val);
473
474 b43_write32(dev, B43_MMIO_RAM_CONTROL, offset);
475 b43_write32(dev, B43_MMIO_RAM_DATA, val);
476}
477
478static inline void b43_shm_control_word(struct b43_wldev *dev,
479 u16 routing, u16 offset)
480{
481 u32 control;
482
483 /* "offset" is the WORD offset. */
484 control = routing;
485 control <<= 16;
486 control |= offset;
487 b43_write32(dev, B43_MMIO_SHM_CONTROL, control);
488}
489
490u32 b43_shm_read32(struct b43_wldev *dev, u16 routing, u16 offset)
491{
492 u32 ret;
493
494 if (routing == B43_SHM_SHARED) {
495 B43_WARN_ON(offset & 0x0001);
496 if (offset & 0x0003) {
497 /* Unaligned access */
498 b43_shm_control_word(dev, routing, offset >> 2);
499 ret = b43_read16(dev, B43_MMIO_SHM_DATA_UNALIGNED);
500 b43_shm_control_word(dev, routing, (offset >> 2) + 1);
501 ret |= ((u32)b43_read16(dev, B43_MMIO_SHM_DATA)) << 16;
502
503 goto out;
504 }
505 offset >>= 2;
506 }
507 b43_shm_control_word(dev, routing, offset);
508 ret = b43_read32(dev, B43_MMIO_SHM_DATA);
509out:
510 return ret;
511}
512
513u16 b43_shm_read16(struct b43_wldev *dev, u16 routing, u16 offset)
514{
515 u16 ret;
516
517 if (routing == B43_SHM_SHARED) {
518 B43_WARN_ON(offset & 0x0001);
519 if (offset & 0x0003) {
520 /* Unaligned access */
521 b43_shm_control_word(dev, routing, offset >> 2);
522 ret = b43_read16(dev, B43_MMIO_SHM_DATA_UNALIGNED);
523
524 goto out;
525 }
526 offset >>= 2;
527 }
528 b43_shm_control_word(dev, routing, offset);
529 ret = b43_read16(dev, B43_MMIO_SHM_DATA);
530out:
531 return ret;
532}
533
534void b43_shm_write32(struct b43_wldev *dev, u16 routing, u16 offset, u32 value)
535{
536 if (routing == B43_SHM_SHARED) {
537 B43_WARN_ON(offset & 0x0001);
538 if (offset & 0x0003) {
539 /* Unaligned access */
540 b43_shm_control_word(dev, routing, offset >> 2);
541 b43_write16(dev, B43_MMIO_SHM_DATA_UNALIGNED,
542 value & 0xFFFF);
543 b43_shm_control_word(dev, routing, (offset >> 2) + 1);
544 b43_write16(dev, B43_MMIO_SHM_DATA,
545 (value >> 16) & 0xFFFF);
546 return;
547 }
548 offset >>= 2;
549 }
550 b43_shm_control_word(dev, routing, offset);
551 b43_write32(dev, B43_MMIO_SHM_DATA, value);
552}
553
554void b43_shm_write16(struct b43_wldev *dev, u16 routing, u16 offset, u16 value)
555{
556 if (routing == B43_SHM_SHARED) {
557 B43_WARN_ON(offset & 0x0001);
558 if (offset & 0x0003) {
559 /* Unaligned access */
560 b43_shm_control_word(dev, routing, offset >> 2);
561 b43_write16(dev, B43_MMIO_SHM_DATA_UNALIGNED, value);
562 return;
563 }
564 offset >>= 2;
565 }
566 b43_shm_control_word(dev, routing, offset);
567 b43_write16(dev, B43_MMIO_SHM_DATA, value);
568}
569
570/* Read HostFlags */
571u64 b43_hf_read(struct b43_wldev *dev)
572{
573 u64 ret;
574
575 ret = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_HOSTF3);
576 ret <<= 16;
577 ret |= b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_HOSTF2);
578 ret <<= 16;
579 ret |= b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_HOSTF1);
580
581 return ret;
582}
583
584/* Write HostFlags */
585void b43_hf_write(struct b43_wldev *dev, u64 value)
586{
587 u16 lo, mi, hi;
588
589 lo = (value & 0x00000000FFFFULL);
590 mi = (value & 0x0000FFFF0000ULL) >> 16;
591 hi = (value & 0xFFFF00000000ULL) >> 32;
592 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_HOSTF1, lo);
593 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_HOSTF2, mi);
594 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_HOSTF3, hi);
595}
596
597/* Read the firmware capabilities bitmask (Opensource firmware only) */
598static u16 b43_fwcapa_read(struct b43_wldev *dev)
599{
600 B43_WARN_ON(!dev->fw.opensource);
601 return b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_FWCAPA);
602}
603
604void b43_tsf_read(struct b43_wldev *dev, u64 *tsf)
605{
606 u32 low, high;
607
608 B43_WARN_ON(dev->dev->core_rev < 3);
609
610 /* The hardware guarantees us an atomic read, if we
611 * read the low register first. */
612 low = b43_read32(dev, B43_MMIO_REV3PLUS_TSF_LOW);
613 high = b43_read32(dev, B43_MMIO_REV3PLUS_TSF_HIGH);
614
615 *tsf = high;
616 *tsf <<= 32;
617 *tsf |= low;
618}
619
620static void b43_time_lock(struct b43_wldev *dev)
621{
622 b43_maskset32(dev, B43_MMIO_MACCTL, ~0, B43_MACCTL_TBTTHOLD);
623 /* Commit the write */
624 b43_read32(dev, B43_MMIO_MACCTL);
625}
626
627static void b43_time_unlock(struct b43_wldev *dev)
628{
629 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_TBTTHOLD, 0);
630 /* Commit the write */
631 b43_read32(dev, B43_MMIO_MACCTL);
632}
633
634static void b43_tsf_write_locked(struct b43_wldev *dev, u64 tsf)
635{
636 u32 low, high;
637
638 B43_WARN_ON(dev->dev->core_rev < 3);
639
640 low = tsf;
641 high = (tsf >> 32);
642 /* The hardware guarantees us an atomic write, if we
643 * write the low register first. */
644 b43_write32(dev, B43_MMIO_REV3PLUS_TSF_LOW, low);
645 b43_write32(dev, B43_MMIO_REV3PLUS_TSF_HIGH, high);
646}
647
648void b43_tsf_write(struct b43_wldev *dev, u64 tsf)
649{
650 b43_time_lock(dev);
651 b43_tsf_write_locked(dev, tsf);
652 b43_time_unlock(dev);
653}
654
655static
656void b43_macfilter_set(struct b43_wldev *dev, u16 offset, const u8 *mac)
657{
658 static const u8 zero_addr[ETH_ALEN] = { 0 };
659 u16 data;
660
661 if (!mac)
662 mac = zero_addr;
663
664 offset |= 0x0020;
665 b43_write16(dev, B43_MMIO_MACFILTER_CONTROL, offset);
666
667 data = mac[0];
668 data |= mac[1] << 8;
669 b43_write16(dev, B43_MMIO_MACFILTER_DATA, data);
670 data = mac[2];
671 data |= mac[3] << 8;
672 b43_write16(dev, B43_MMIO_MACFILTER_DATA, data);
673 data = mac[4];
674 data |= mac[5] << 8;
675 b43_write16(dev, B43_MMIO_MACFILTER_DATA, data);
676}
677
678static void b43_write_mac_bssid_templates(struct b43_wldev *dev)
679{
680 const u8 *mac;
681 const u8 *bssid;
682 u8 mac_bssid[ETH_ALEN * 2];
683 int i;
684 u32 tmp;
685
686 bssid = dev->wl->bssid;
687 mac = dev->wl->mac_addr;
688
689 b43_macfilter_set(dev, B43_MACFILTER_BSSID, bssid);
690
691 memcpy(mac_bssid, mac, ETH_ALEN);
692 memcpy(mac_bssid + ETH_ALEN, bssid, ETH_ALEN);
693
694 /* Write our MAC address and BSSID to template ram */
695 for (i = 0; i < ARRAY_SIZE(mac_bssid); i += sizeof(u32)) {
696 tmp = (u32) (mac_bssid[i + 0]);
697 tmp |= (u32) (mac_bssid[i + 1]) << 8;
698 tmp |= (u32) (mac_bssid[i + 2]) << 16;
699 tmp |= (u32) (mac_bssid[i + 3]) << 24;
700 b43_ram_write(dev, 0x20 + i, tmp);
701 }
702}
703
704static void b43_upload_card_macaddress(struct b43_wldev *dev)
705{
706 b43_write_mac_bssid_templates(dev);
707 b43_macfilter_set(dev, B43_MACFILTER_SELF, dev->wl->mac_addr);
708}
709
710static void b43_set_slot_time(struct b43_wldev *dev, u16 slot_time)
711{
712 /* slot_time is in usec. */
713 /* This test used to exit for all but a G PHY. */
714 if (b43_current_band(dev->wl) == NL80211_BAND_5GHZ)
715 return;
716 b43_write16(dev, B43_MMIO_IFSSLOT, 510 + slot_time);
717 /* Shared memory location 0x0010 is the slot time and should be
718 * set to slot_time; however, this register is initially 0 and changing
719 * the value adversely affects the transmit rate for BCM4311
720 * devices. Until this behavior is unterstood, delete this step
721 *
722 * b43_shm_write16(dev, B43_SHM_SHARED, 0x0010, slot_time);
723 */
724}
725
726static void b43_short_slot_timing_enable(struct b43_wldev *dev)
727{
728 b43_set_slot_time(dev, 9);
729}
730
731static void b43_short_slot_timing_disable(struct b43_wldev *dev)
732{
733 b43_set_slot_time(dev, 20);
734}
735
736/* DummyTransmission function, as documented on
737 * http://bcm-v4.sipsolutions.net/802.11/DummyTransmission
738 */
739void b43_dummy_transmission(struct b43_wldev *dev, bool ofdm, bool pa_on)
740{
741 struct b43_phy *phy = &dev->phy;
742 unsigned int i, max_loop;
743 u16 value;
744 u32 buffer[5] = {
745 0x00000000,
746 0x00D40000,
747 0x00000000,
748 0x01000000,
749 0x00000000,
750 };
751
752 if (ofdm) {
753 max_loop = 0x1E;
754 buffer[0] = 0x000201CC;
755 } else {
756 max_loop = 0xFA;
757 buffer[0] = 0x000B846E;
758 }
759
760 for (i = 0; i < 5; i++)
761 b43_ram_write(dev, i * 4, buffer[i]);
762
763 b43_write16(dev, B43_MMIO_XMTSEL, 0x0000);
764
765 if (dev->dev->core_rev < 11)
766 b43_write16(dev, B43_MMIO_WEPCTL, 0x0000);
767 else
768 b43_write16(dev, B43_MMIO_WEPCTL, 0x0100);
769
770 value = (ofdm ? 0x41 : 0x40);
771 b43_write16(dev, B43_MMIO_TXE0_PHYCTL, value);
772 if (phy->type == B43_PHYTYPE_N || phy->type == B43_PHYTYPE_LP ||
773 phy->type == B43_PHYTYPE_LCN)
774 b43_write16(dev, B43_MMIO_TXE0_PHYCTL1, 0x1A02);
775
776 b43_write16(dev, B43_MMIO_TXE0_WM_0, 0x0000);
777 b43_write16(dev, B43_MMIO_TXE0_WM_1, 0x0000);
778
779 b43_write16(dev, B43_MMIO_XMTTPLATETXPTR, 0x0000);
780 b43_write16(dev, B43_MMIO_XMTTXCNT, 0x0014);
781 b43_write16(dev, B43_MMIO_XMTSEL, 0x0826);
782 b43_write16(dev, B43_MMIO_TXE0_CTL, 0x0000);
783
784 if (!pa_on && phy->type == B43_PHYTYPE_N)
785 ; /*b43_nphy_pa_override(dev, false) */
786
787 switch (phy->type) {
788 case B43_PHYTYPE_N:
789 case B43_PHYTYPE_LCN:
790 b43_write16(dev, B43_MMIO_TXE0_AUX, 0x00D0);
791 break;
792 case B43_PHYTYPE_LP:
793 b43_write16(dev, B43_MMIO_TXE0_AUX, 0x0050);
794 break;
795 default:
796 b43_write16(dev, B43_MMIO_TXE0_AUX, 0x0030);
797 }
798 b43_read16(dev, B43_MMIO_TXE0_AUX);
799
800 if (phy->radio_ver == 0x2050 && phy->radio_rev <= 0x5)
801 b43_radio_write16(dev, 0x0051, 0x0017);
802 for (i = 0x00; i < max_loop; i++) {
803 value = b43_read16(dev, B43_MMIO_TXE0_STATUS);
804 if (value & 0x0080)
805 break;
806 udelay(10);
807 }
808 for (i = 0x00; i < 0x0A; i++) {
809 value = b43_read16(dev, B43_MMIO_TXE0_STATUS);
810 if (value & 0x0400)
811 break;
812 udelay(10);
813 }
814 for (i = 0x00; i < 0x19; i++) {
815 value = b43_read16(dev, B43_MMIO_IFSSTAT);
816 if (!(value & 0x0100))
817 break;
818 udelay(10);
819 }
820 if (phy->radio_ver == 0x2050 && phy->radio_rev <= 0x5)
821 b43_radio_write16(dev, 0x0051, 0x0037);
822}
823
824static void key_write(struct b43_wldev *dev,
825 u8 index, u8 algorithm, const u8 *key)
826{
827 unsigned int i;
828 u32 offset;
829 u16 value;
830 u16 kidx;
831
832 /* Key index/algo block */
833 kidx = b43_kidx_to_fw(dev, index);
834 value = ((kidx << 4) | algorithm);
835 b43_shm_write16(dev, B43_SHM_SHARED,
836 B43_SHM_SH_KEYIDXBLOCK + (kidx * 2), value);
837
838 /* Write the key to the Key Table Pointer offset */
839 offset = dev->ktp + (index * B43_SEC_KEYSIZE);
840 for (i = 0; i < B43_SEC_KEYSIZE; i += 2) {
841 value = key[i];
842 value |= (u16) (key[i + 1]) << 8;
843 b43_shm_write16(dev, B43_SHM_SHARED, offset + i, value);
844 }
845}
846
847static void keymac_write(struct b43_wldev *dev, u8 index, const u8 *addr)
848{
849 u32 addrtmp[2] = { 0, 0, };
850 u8 pairwise_keys_start = B43_NR_GROUP_KEYS * 2;
851
852 if (b43_new_kidx_api(dev))
853 pairwise_keys_start = B43_NR_GROUP_KEYS;
854
855 B43_WARN_ON(index < pairwise_keys_start);
856 /* We have four default TX keys and possibly four default RX keys.
857 * Physical mac 0 is mapped to physical key 4 or 8, depending
858 * on the firmware version.
859 * So we must adjust the index here.
860 */
861 index -= pairwise_keys_start;
862 B43_WARN_ON(index >= B43_NR_PAIRWISE_KEYS);
863
864 if (addr) {
865 addrtmp[0] = addr[0];
866 addrtmp[0] |= ((u32) (addr[1]) << 8);
867 addrtmp[0] |= ((u32) (addr[2]) << 16);
868 addrtmp[0] |= ((u32) (addr[3]) << 24);
869 addrtmp[1] = addr[4];
870 addrtmp[1] |= ((u32) (addr[5]) << 8);
871 }
872
873 /* Receive match transmitter address (RCMTA) mechanism */
874 b43_shm_write32(dev, B43_SHM_RCMTA,
875 (index * 2) + 0, addrtmp[0]);
876 b43_shm_write16(dev, B43_SHM_RCMTA,
877 (index * 2) + 1, addrtmp[1]);
878}
879
880/* The ucode will use phase1 key with TEK key to decrypt rx packets.
881 * When a packet is received, the iv32 is checked.
882 * - if it doesn't the packet is returned without modification (and software
883 * decryption can be done). That's what happen when iv16 wrap.
884 * - if it does, the rc4 key is computed, and decryption is tried.
885 * Either it will success and B43_RX_MAC_DEC is returned,
886 * either it fails and B43_RX_MAC_DEC|B43_RX_MAC_DECERR is returned
887 * and the packet is not usable (it got modified by the ucode).
888 * So in order to never have B43_RX_MAC_DECERR, we should provide
889 * a iv32 and phase1key that match. Because we drop packets in case of
890 * B43_RX_MAC_DECERR, if we have a correct iv32 but a wrong phase1key, all
891 * packets will be lost without higher layer knowing (ie no resync possible
892 * until next wrap).
893 *
894 * NOTE : this should support 50 key like RCMTA because
895 * (B43_SHM_SH_KEYIDXBLOCK - B43_SHM_SH_TKIPTSCTTAK)/14 = 50
896 */
897static void rx_tkip_phase1_write(struct b43_wldev *dev, u8 index, u32 iv32,
898 u16 *phase1key)
899{
900 unsigned int i;
901 u32 offset;
902 u8 pairwise_keys_start = B43_NR_GROUP_KEYS * 2;
903
904 if (!modparam_hwtkip)
905 return;
906
907 if (b43_new_kidx_api(dev))
908 pairwise_keys_start = B43_NR_GROUP_KEYS;
909
910 B43_WARN_ON(index < pairwise_keys_start);
911 /* We have four default TX keys and possibly four default RX keys.
912 * Physical mac 0 is mapped to physical key 4 or 8, depending
913 * on the firmware version.
914 * So we must adjust the index here.
915 */
916 index -= pairwise_keys_start;
917 B43_WARN_ON(index >= B43_NR_PAIRWISE_KEYS);
918
919 if (b43_debug(dev, B43_DBG_KEYS)) {
920 b43dbg(dev->wl, "rx_tkip_phase1_write : idx 0x%x, iv32 0x%x\n",
921 index, iv32);
922 }
923 /* Write the key to the RX tkip shared mem */
924 offset = B43_SHM_SH_TKIPTSCTTAK + index * (10 + 4);
925 for (i = 0; i < 10; i += 2) {
926 b43_shm_write16(dev, B43_SHM_SHARED, offset + i,
927 phase1key ? phase1key[i / 2] : 0);
928 }
929 b43_shm_write16(dev, B43_SHM_SHARED, offset + i, iv32);
930 b43_shm_write16(dev, B43_SHM_SHARED, offset + i + 2, iv32 >> 16);
931}
932
933static void b43_op_update_tkip_key(struct ieee80211_hw *hw,
934 struct ieee80211_vif *vif,
935 struct ieee80211_key_conf *keyconf,
936 struct ieee80211_sta *sta,
937 u32 iv32, u16 *phase1key)
938{
939 struct b43_wl *wl = hw_to_b43_wl(hw);
940 struct b43_wldev *dev;
941 int index = keyconf->hw_key_idx;
942
943 if (B43_WARN_ON(!modparam_hwtkip))
944 return;
945
946 /* This is only called from the RX path through mac80211, where
947 * our mutex is already locked. */
948 B43_WARN_ON(!mutex_is_locked(&wl->mutex));
949 dev = wl->current_dev;
950 B43_WARN_ON(!dev || b43_status(dev) < B43_STAT_INITIALIZED);
951
952 keymac_write(dev, index, NULL); /* First zero out mac to avoid race */
953
954 rx_tkip_phase1_write(dev, index, iv32, phase1key);
955 /* only pairwise TKIP keys are supported right now */
956 if (WARN_ON(!sta))
957 return;
958 keymac_write(dev, index, sta->addr);
959}
960
961static void do_key_write(struct b43_wldev *dev,
962 u8 index, u8 algorithm,
963 const u8 *key, size_t key_len, const u8 *mac_addr)
964{
965 u8 buf[B43_SEC_KEYSIZE] = { 0, };
966 u8 pairwise_keys_start = B43_NR_GROUP_KEYS * 2;
967
968 if (b43_new_kidx_api(dev))
969 pairwise_keys_start = B43_NR_GROUP_KEYS;
970
971 B43_WARN_ON(index >= ARRAY_SIZE(dev->key));
972 B43_WARN_ON(key_len > B43_SEC_KEYSIZE);
973
974 if (index >= pairwise_keys_start)
975 keymac_write(dev, index, NULL); /* First zero out mac. */
976 if (algorithm == B43_SEC_ALGO_TKIP) {
977 /*
978 * We should provide an initial iv32, phase1key pair.
979 * We could start with iv32=0 and compute the corresponding
980 * phase1key, but this means calling ieee80211_get_tkip_key
981 * with a fake skb (or export other tkip function).
982 * Because we are lazy we hope iv32 won't start with
983 * 0xffffffff and let's b43_op_update_tkip_key provide a
984 * correct pair.
985 */
986 rx_tkip_phase1_write(dev, index, 0xffffffff, (u16*)buf);
987 } else if (index >= pairwise_keys_start) /* clear it */
988 rx_tkip_phase1_write(dev, index, 0, NULL);
989 if (key)
990 memcpy(buf, key, key_len);
991 key_write(dev, index, algorithm, buf);
992 if (index >= pairwise_keys_start)
993 keymac_write(dev, index, mac_addr);
994
995 dev->key[index].algorithm = algorithm;
996}
997
998static int b43_key_write(struct b43_wldev *dev,
999 int index, u8 algorithm,
1000 const u8 *key, size_t key_len,
1001 const u8 *mac_addr,
1002 struct ieee80211_key_conf *keyconf)
1003{
1004 int i;
1005 int pairwise_keys_start;
1006
1007 /* For ALG_TKIP the key is encoded as a 256-bit (32 byte) data block:
1008 * - Temporal Encryption Key (128 bits)
1009 * - Temporal Authenticator Tx MIC Key (64 bits)
1010 * - Temporal Authenticator Rx MIC Key (64 bits)
1011 *
1012 * Hardware only store TEK
1013 */
1014 if (algorithm == B43_SEC_ALGO_TKIP && key_len == 32)
1015 key_len = 16;
1016 if (key_len > B43_SEC_KEYSIZE)
1017 return -EINVAL;
1018 for (i = 0; i < ARRAY_SIZE(dev->key); i++) {
1019 /* Check that we don't already have this key. */
1020 B43_WARN_ON(dev->key[i].keyconf == keyconf);
1021 }
1022 if (index < 0) {
1023 /* Pairwise key. Get an empty slot for the key. */
1024 if (b43_new_kidx_api(dev))
1025 pairwise_keys_start = B43_NR_GROUP_KEYS;
1026 else
1027 pairwise_keys_start = B43_NR_GROUP_KEYS * 2;
1028 for (i = pairwise_keys_start;
1029 i < pairwise_keys_start + B43_NR_PAIRWISE_KEYS;
1030 i++) {
1031 B43_WARN_ON(i >= ARRAY_SIZE(dev->key));
1032 if (!dev->key[i].keyconf) {
1033 /* found empty */
1034 index = i;
1035 break;
1036 }
1037 }
1038 if (index < 0) {
1039 b43warn(dev->wl, "Out of hardware key memory\n");
1040 return -ENOSPC;
1041 }
1042 } else
1043 B43_WARN_ON(index > 3);
1044
1045 do_key_write(dev, index, algorithm, key, key_len, mac_addr);
1046 if ((index <= 3) && !b43_new_kidx_api(dev)) {
1047 /* Default RX key */
1048 B43_WARN_ON(mac_addr);
1049 do_key_write(dev, index + 4, algorithm, key, key_len, NULL);
1050 }
1051 keyconf->hw_key_idx = index;
1052 dev->key[index].keyconf = keyconf;
1053
1054 return 0;
1055}
1056
1057static int b43_key_clear(struct b43_wldev *dev, int index)
1058{
1059 if (B43_WARN_ON((index < 0) || (index >= ARRAY_SIZE(dev->key))))
1060 return -EINVAL;
1061 do_key_write(dev, index, B43_SEC_ALGO_NONE,
1062 NULL, B43_SEC_KEYSIZE, NULL);
1063 if ((index <= 3) && !b43_new_kidx_api(dev)) {
1064 do_key_write(dev, index + 4, B43_SEC_ALGO_NONE,
1065 NULL, B43_SEC_KEYSIZE, NULL);
1066 }
1067 dev->key[index].keyconf = NULL;
1068
1069 return 0;
1070}
1071
1072static void b43_clear_keys(struct b43_wldev *dev)
1073{
1074 int i, count;
1075
1076 if (b43_new_kidx_api(dev))
1077 count = B43_NR_GROUP_KEYS + B43_NR_PAIRWISE_KEYS;
1078 else
1079 count = B43_NR_GROUP_KEYS * 2 + B43_NR_PAIRWISE_KEYS;
1080 for (i = 0; i < count; i++)
1081 b43_key_clear(dev, i);
1082}
1083
1084static void b43_dump_keymemory(struct b43_wldev *dev)
1085{
1086 unsigned int i, index, count, offset, pairwise_keys_start;
1087 u8 mac[ETH_ALEN];
1088 u16 algo;
1089 u32 rcmta0;
1090 u16 rcmta1;
1091 u64 hf;
1092 struct b43_key *key;
1093
1094 if (!b43_debug(dev, B43_DBG_KEYS))
1095 return;
1096
1097 hf = b43_hf_read(dev);
1098 b43dbg(dev->wl, "Hardware key memory dump: USEDEFKEYS=%u\n",
1099 !!(hf & B43_HF_USEDEFKEYS));
1100 if (b43_new_kidx_api(dev)) {
1101 pairwise_keys_start = B43_NR_GROUP_KEYS;
1102 count = B43_NR_GROUP_KEYS + B43_NR_PAIRWISE_KEYS;
1103 } else {
1104 pairwise_keys_start = B43_NR_GROUP_KEYS * 2;
1105 count = B43_NR_GROUP_KEYS * 2 + B43_NR_PAIRWISE_KEYS;
1106 }
1107 for (index = 0; index < count; index++) {
1108 key = &(dev->key[index]);
1109 printk(KERN_DEBUG "Key slot %02u: %s",
1110 index, (key->keyconf == NULL) ? " " : "*");
1111 offset = dev->ktp + (index * B43_SEC_KEYSIZE);
1112 for (i = 0; i < B43_SEC_KEYSIZE; i += 2) {
1113 u16 tmp = b43_shm_read16(dev, B43_SHM_SHARED, offset + i);
1114 printk("%02X%02X", (tmp & 0xFF), ((tmp >> 8) & 0xFF));
1115 }
1116
1117 algo = b43_shm_read16(dev, B43_SHM_SHARED,
1118 B43_SHM_SH_KEYIDXBLOCK + (index * 2));
1119 printk(" Algo: %04X/%02X", algo, key->algorithm);
1120
1121 if (index >= pairwise_keys_start) {
1122 if (key->algorithm == B43_SEC_ALGO_TKIP) {
1123 printk(" TKIP: ");
1124 offset = B43_SHM_SH_TKIPTSCTTAK + (index - 4) * (10 + 4);
1125 for (i = 0; i < 14; i += 2) {
1126 u16 tmp = b43_shm_read16(dev, B43_SHM_SHARED, offset + i);
1127 printk("%02X%02X", (tmp & 0xFF), ((tmp >> 8) & 0xFF));
1128 }
1129 }
1130 rcmta0 = b43_shm_read32(dev, B43_SHM_RCMTA,
1131 ((index - pairwise_keys_start) * 2) + 0);
1132 rcmta1 = b43_shm_read16(dev, B43_SHM_RCMTA,
1133 ((index - pairwise_keys_start) * 2) + 1);
1134 *((__le32 *)(&mac[0])) = cpu_to_le32(rcmta0);
1135 *((__le16 *)(&mac[4])) = cpu_to_le16(rcmta1);
1136 printk(" MAC: %pM", mac);
1137 } else
1138 printk(" DEFAULT KEY");
1139 printk("\n");
1140 }
1141}
1142
1143void b43_power_saving_ctl_bits(struct b43_wldev *dev, unsigned int ps_flags)
1144{
1145 u32 macctl;
1146 u16 ucstat;
1147 bool hwps;
1148 bool awake;
1149 int i;
1150
1151 B43_WARN_ON((ps_flags & B43_PS_ENABLED) &&
1152 (ps_flags & B43_PS_DISABLED));
1153 B43_WARN_ON((ps_flags & B43_PS_AWAKE) && (ps_flags & B43_PS_ASLEEP));
1154
1155 if (ps_flags & B43_PS_ENABLED) {
1156 hwps = true;
1157 } else if (ps_flags & B43_PS_DISABLED) {
1158 hwps = false;
1159 } else {
1160 //TODO: If powersave is not off and FIXME is not set and we are not in adhoc
1161 // and thus is not an AP and we are associated, set bit 25
1162 }
1163 if (ps_flags & B43_PS_AWAKE) {
1164 awake = true;
1165 } else if (ps_flags & B43_PS_ASLEEP) {
1166 awake = false;
1167 } else {
1168 //TODO: If the device is awake or this is an AP, or we are scanning, or FIXME,
1169 // or we are associated, or FIXME, or the latest PS-Poll packet sent was
1170 // successful, set bit26
1171 }
1172
1173/* FIXME: For now we force awake-on and hwps-off */
1174 hwps = false;
1175 awake = true;
1176
1177 macctl = b43_read32(dev, B43_MMIO_MACCTL);
1178 if (hwps)
1179 macctl |= B43_MACCTL_HWPS;
1180 else
1181 macctl &= ~B43_MACCTL_HWPS;
1182 if (awake)
1183 macctl |= B43_MACCTL_AWAKE;
1184 else
1185 macctl &= ~B43_MACCTL_AWAKE;
1186 b43_write32(dev, B43_MMIO_MACCTL, macctl);
1187 /* Commit write */
1188 b43_read32(dev, B43_MMIO_MACCTL);
1189 if (awake && dev->dev->core_rev >= 5) {
1190 /* Wait for the microcode to wake up. */
1191 for (i = 0; i < 100; i++) {
1192 ucstat = b43_shm_read16(dev, B43_SHM_SHARED,
1193 B43_SHM_SH_UCODESTAT);
1194 if (ucstat != B43_SHM_SH_UCODESTAT_SLEEP)
1195 break;
1196 udelay(10);
1197 }
1198 }
1199}
1200
1201/* http://bcm-v4.sipsolutions.net/802.11/PHY/BmacCorePllReset */
1202void b43_wireless_core_phy_pll_reset(struct b43_wldev *dev)
1203{
1204 struct bcma_drv_cc *bcma_cc __maybe_unused;
1205 struct ssb_chipcommon *ssb_cc __maybe_unused;
1206
1207 switch (dev->dev->bus_type) {
1208#ifdef CONFIG_B43_BCMA
1209 case B43_BUS_BCMA:
1210 bcma_cc = &dev->dev->bdev->bus->drv_cc;
1211
1212 bcma_cc_write32(bcma_cc, BCMA_CC_PMU_CHIPCTL_ADDR, 0);
1213 bcma_cc_mask32(bcma_cc, BCMA_CC_PMU_CHIPCTL_DATA, ~0x4);
1214 bcma_cc_set32(bcma_cc, BCMA_CC_PMU_CHIPCTL_DATA, 0x4);
1215 bcma_cc_mask32(bcma_cc, BCMA_CC_PMU_CHIPCTL_DATA, ~0x4);
1216 break;
1217#endif
1218#ifdef CONFIG_B43_SSB
1219 case B43_BUS_SSB:
1220 ssb_cc = &dev->dev->sdev->bus->chipco;
1221
1222 chipco_write32(ssb_cc, SSB_CHIPCO_CHIPCTL_ADDR, 0);
1223 chipco_mask32(ssb_cc, SSB_CHIPCO_CHIPCTL_DATA, ~0x4);
1224 chipco_set32(ssb_cc, SSB_CHIPCO_CHIPCTL_DATA, 0x4);
1225 chipco_mask32(ssb_cc, SSB_CHIPCO_CHIPCTL_DATA, ~0x4);
1226 break;
1227#endif
1228 }
1229}
1230
1231#ifdef CONFIG_B43_BCMA
1232static void b43_bcma_phy_reset(struct b43_wldev *dev)
1233{
1234 u32 flags;
1235
1236 /* Put PHY into reset */
1237 flags = bcma_aread32(dev->dev->bdev, BCMA_IOCTL);
1238 flags |= B43_BCMA_IOCTL_PHY_RESET;
1239 flags |= B43_BCMA_IOCTL_PHY_BW_20MHZ; /* Make 20 MHz def */
1240 bcma_awrite32(dev->dev->bdev, BCMA_IOCTL, flags);
1241 udelay(2);
1242
1243 b43_phy_take_out_of_reset(dev);
1244}
1245
1246static void b43_bcma_wireless_core_reset(struct b43_wldev *dev, bool gmode)
1247{
1248 u32 req = B43_BCMA_CLKCTLST_80211_PLL_REQ |
1249 B43_BCMA_CLKCTLST_PHY_PLL_REQ;
1250 u32 status = B43_BCMA_CLKCTLST_80211_PLL_ST |
1251 B43_BCMA_CLKCTLST_PHY_PLL_ST;
1252 u32 flags;
1253
1254 flags = B43_BCMA_IOCTL_PHY_CLKEN;
1255 if (gmode)
1256 flags |= B43_BCMA_IOCTL_GMODE;
1257 b43_device_enable(dev, flags);
1258
1259 if (dev->phy.type == B43_PHYTYPE_AC) {
1260 u16 tmp;
1261
1262 tmp = bcma_aread32(dev->dev->bdev, BCMA_IOCTL);
1263 tmp &= ~B43_BCMA_IOCTL_DAC;
1264 tmp |= 0x100;
1265 bcma_awrite32(dev->dev->bdev, BCMA_IOCTL, tmp);
1266
1267 tmp = bcma_aread32(dev->dev->bdev, BCMA_IOCTL);
1268 tmp &= ~B43_BCMA_IOCTL_PHY_CLKEN;
1269 bcma_awrite32(dev->dev->bdev, BCMA_IOCTL, tmp);
1270
1271 tmp = bcma_aread32(dev->dev->bdev, BCMA_IOCTL);
1272 tmp |= B43_BCMA_IOCTL_PHY_CLKEN;
1273 bcma_awrite32(dev->dev->bdev, BCMA_IOCTL, tmp);
1274 }
1275
1276 bcma_core_set_clockmode(dev->dev->bdev, BCMA_CLKMODE_FAST);
1277 b43_bcma_phy_reset(dev);
1278 bcma_core_pll_ctl(dev->dev->bdev, req, status, true);
1279}
1280#endif
1281
1282#ifdef CONFIG_B43_SSB
1283static void b43_ssb_wireless_core_reset(struct b43_wldev *dev, bool gmode)
1284{
1285 u32 flags = 0;
1286
1287 if (gmode)
1288 flags |= B43_TMSLOW_GMODE;
1289 flags |= B43_TMSLOW_PHYCLKEN;
1290 flags |= B43_TMSLOW_PHYRESET;
1291 if (dev->phy.type == B43_PHYTYPE_N)
1292 flags |= B43_TMSLOW_PHY_BANDWIDTH_20MHZ; /* Make 20 MHz def */
1293 b43_device_enable(dev, flags);
1294 msleep(2); /* Wait for the PLL to turn on. */
1295
1296 b43_phy_take_out_of_reset(dev);
1297}
1298#endif
1299
1300void b43_wireless_core_reset(struct b43_wldev *dev, bool gmode)
1301{
1302 u32 macctl;
1303
1304 switch (dev->dev->bus_type) {
1305#ifdef CONFIG_B43_BCMA
1306 case B43_BUS_BCMA:
1307 b43_bcma_wireless_core_reset(dev, gmode);
1308 break;
1309#endif
1310#ifdef CONFIG_B43_SSB
1311 case B43_BUS_SSB:
1312 b43_ssb_wireless_core_reset(dev, gmode);
1313 break;
1314#endif
1315 }
1316
1317 /* Turn Analog ON, but only if we already know the PHY-type.
1318 * This protects against very early setup where we don't know the
1319 * PHY-type, yet. wireless_core_reset will be called once again later,
1320 * when we know the PHY-type. */
1321 if (dev->phy.ops)
1322 dev->phy.ops->switch_analog(dev, 1);
1323
1324 macctl = b43_read32(dev, B43_MMIO_MACCTL);
1325 macctl &= ~B43_MACCTL_GMODE;
1326 if (gmode)
1327 macctl |= B43_MACCTL_GMODE;
1328 macctl |= B43_MACCTL_IHR_ENABLED;
1329 b43_write32(dev, B43_MMIO_MACCTL, macctl);
1330}
1331
1332static void handle_irq_transmit_status(struct b43_wldev *dev)
1333{
1334 u32 v0, v1;
1335 u16 tmp;
1336 struct b43_txstatus stat;
1337
1338 while (1) {
1339 v0 = b43_read32(dev, B43_MMIO_XMITSTAT_0);
1340 if (!(v0 & 0x00000001))
1341 break;
1342 v1 = b43_read32(dev, B43_MMIO_XMITSTAT_1);
1343
1344 stat.cookie = (v0 >> 16);
1345 stat.seq = (v1 & 0x0000FFFF);
1346 stat.phy_stat = ((v1 & 0x00FF0000) >> 16);
1347 tmp = (v0 & 0x0000FFFF);
1348 stat.frame_count = ((tmp & 0xF000) >> 12);
1349 stat.rts_count = ((tmp & 0x0F00) >> 8);
1350 stat.supp_reason = ((tmp & 0x001C) >> 2);
1351 stat.pm_indicated = !!(tmp & 0x0080);
1352 stat.intermediate = !!(tmp & 0x0040);
1353 stat.for_ampdu = !!(tmp & 0x0020);
1354 stat.acked = !!(tmp & 0x0002);
1355
1356 b43_handle_txstatus(dev, &stat);
1357 }
1358}
1359
1360static void drain_txstatus_queue(struct b43_wldev *dev)
1361{
1362 u32 dummy;
1363
1364 if (dev->dev->core_rev < 5)
1365 return;
1366 /* Read all entries from the microcode TXstatus FIFO
1367 * and throw them away.
1368 */
1369 while (1) {
1370 dummy = b43_read32(dev, B43_MMIO_XMITSTAT_0);
1371 if (!(dummy & 0x00000001))
1372 break;
1373 dummy = b43_read32(dev, B43_MMIO_XMITSTAT_1);
1374 }
1375}
1376
1377static u32 b43_jssi_read(struct b43_wldev *dev)
1378{
1379 u32 val = 0;
1380
1381 val = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_JSSI1);
1382 val <<= 16;
1383 val |= b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_JSSI0);
1384
1385 return val;
1386}
1387
1388static void b43_jssi_write(struct b43_wldev *dev, u32 jssi)
1389{
1390 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_JSSI0,
1391 (jssi & 0x0000FFFF));
1392 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_JSSI1,
1393 (jssi & 0xFFFF0000) >> 16);
1394}
1395
1396static void b43_generate_noise_sample(struct b43_wldev *dev)
1397{
1398 b43_jssi_write(dev, 0x7F7F7F7F);
1399 b43_write32(dev, B43_MMIO_MACCMD,
1400 b43_read32(dev, B43_MMIO_MACCMD) | B43_MACCMD_BGNOISE);
1401}
1402
1403static void b43_calculate_link_quality(struct b43_wldev *dev)
1404{
1405 /* Top half of Link Quality calculation. */
1406
1407 if (dev->phy.type != B43_PHYTYPE_G)
1408 return;
1409 if (dev->noisecalc.calculation_running)
1410 return;
1411 dev->noisecalc.calculation_running = true;
1412 dev->noisecalc.nr_samples = 0;
1413
1414 b43_generate_noise_sample(dev);
1415}
1416
1417static void handle_irq_noise(struct b43_wldev *dev)
1418{
1419 struct b43_phy_g *phy = dev->phy.g;
1420 u16 tmp;
1421 u8 noise[4];
1422 u8 i, j;
1423 s32 average;
1424
1425 /* Bottom half of Link Quality calculation. */
1426
1427 if (dev->phy.type != B43_PHYTYPE_G)
1428 return;
1429
1430 /* Possible race condition: It might be possible that the user
1431 * changed to a different channel in the meantime since we
1432 * started the calculation. We ignore that fact, since it's
1433 * not really that much of a problem. The background noise is
1434 * an estimation only anyway. Slightly wrong results will get damped
1435 * by the averaging of the 8 sample rounds. Additionally the
1436 * value is shortlived. So it will be replaced by the next noise
1437 * calculation round soon. */
1438
1439 B43_WARN_ON(!dev->noisecalc.calculation_running);
1440 *((__le32 *)noise) = cpu_to_le32(b43_jssi_read(dev));
1441 if (noise[0] == 0x7F || noise[1] == 0x7F ||
1442 noise[2] == 0x7F || noise[3] == 0x7F)
1443 goto generate_new;
1444
1445 /* Get the noise samples. */
1446 B43_WARN_ON(dev->noisecalc.nr_samples >= 8);
1447 i = dev->noisecalc.nr_samples;
1448 noise[0] = clamp_val(noise[0], 0, ARRAY_SIZE(phy->nrssi_lt) - 1);
1449 noise[1] = clamp_val(noise[1], 0, ARRAY_SIZE(phy->nrssi_lt) - 1);
1450 noise[2] = clamp_val(noise[2], 0, ARRAY_SIZE(phy->nrssi_lt) - 1);
1451 noise[3] = clamp_val(noise[3], 0, ARRAY_SIZE(phy->nrssi_lt) - 1);
1452 dev->noisecalc.samples[i][0] = phy->nrssi_lt[noise[0]];
1453 dev->noisecalc.samples[i][1] = phy->nrssi_lt[noise[1]];
1454 dev->noisecalc.samples[i][2] = phy->nrssi_lt[noise[2]];
1455 dev->noisecalc.samples[i][3] = phy->nrssi_lt[noise[3]];
1456 dev->noisecalc.nr_samples++;
1457 if (dev->noisecalc.nr_samples == 8) {
1458 /* Calculate the Link Quality by the noise samples. */
1459 average = 0;
1460 for (i = 0; i < 8; i++) {
1461 for (j = 0; j < 4; j++)
1462 average += dev->noisecalc.samples[i][j];
1463 }
1464 average /= (8 * 4);
1465 average *= 125;
1466 average += 64;
1467 average /= 128;
1468 tmp = b43_shm_read16(dev, B43_SHM_SHARED, 0x40C);
1469 tmp = (tmp / 128) & 0x1F;
1470 if (tmp >= 8)
1471 average += 2;
1472 else
1473 average -= 25;
1474 if (tmp == 8)
1475 average -= 72;
1476 else
1477 average -= 48;
1478
1479 dev->stats.link_noise = average;
1480 dev->noisecalc.calculation_running = false;
1481 return;
1482 }
1483generate_new:
1484 b43_generate_noise_sample(dev);
1485}
1486
1487static void handle_irq_tbtt_indication(struct b43_wldev *dev)
1488{
1489 if (b43_is_mode(dev->wl, NL80211_IFTYPE_AP)) {
1490 ///TODO: PS TBTT
1491 } else {
1492 if (1 /*FIXME: the last PSpoll frame was sent successfully */ )
1493 b43_power_saving_ctl_bits(dev, 0);
1494 }
1495 if (b43_is_mode(dev->wl, NL80211_IFTYPE_ADHOC))
1496 dev->dfq_valid = true;
1497}
1498
1499static void handle_irq_atim_end(struct b43_wldev *dev)
1500{
1501 if (dev->dfq_valid) {
1502 b43_write32(dev, B43_MMIO_MACCMD,
1503 b43_read32(dev, B43_MMIO_MACCMD)
1504 | B43_MACCMD_DFQ_VALID);
1505 dev->dfq_valid = false;
1506 }
1507}
1508
1509static void handle_irq_pmq(struct b43_wldev *dev)
1510{
1511 u32 tmp;
1512
1513 //TODO: AP mode.
1514
1515 while (1) {
1516 tmp = b43_read32(dev, B43_MMIO_PS_STATUS);
1517 if (!(tmp & 0x00000008))
1518 break;
1519 }
1520 /* 16bit write is odd, but correct. */
1521 b43_write16(dev, B43_MMIO_PS_STATUS, 0x0002);
1522}
1523
1524static void b43_write_template_common(struct b43_wldev *dev,
1525 const u8 *data, u16 size,
1526 u16 ram_offset,
1527 u16 shm_size_offset, u8 rate)
1528{
1529 u32 i, tmp;
1530 struct b43_plcp_hdr4 plcp;
1531
1532 plcp.data = 0;
1533 b43_generate_plcp_hdr(&plcp, size + FCS_LEN, rate);
1534 b43_ram_write(dev, ram_offset, le32_to_cpu(plcp.data));
1535 ram_offset += sizeof(u32);
1536 /* The PLCP is 6 bytes long, but we only wrote 4 bytes, yet.
1537 * So leave the first two bytes of the next write blank.
1538 */
1539 tmp = (u32) (data[0]) << 16;
1540 tmp |= (u32) (data[1]) << 24;
1541 b43_ram_write(dev, ram_offset, tmp);
1542 ram_offset += sizeof(u32);
1543 for (i = 2; i < size; i += sizeof(u32)) {
1544 tmp = (u32) (data[i + 0]);
1545 if (i + 1 < size)
1546 tmp |= (u32) (data[i + 1]) << 8;
1547 if (i + 2 < size)
1548 tmp |= (u32) (data[i + 2]) << 16;
1549 if (i + 3 < size)
1550 tmp |= (u32) (data[i + 3]) << 24;
1551 b43_ram_write(dev, ram_offset + i - 2, tmp);
1552 }
1553 b43_shm_write16(dev, B43_SHM_SHARED, shm_size_offset,
1554 size + sizeof(struct b43_plcp_hdr6));
1555}
1556
1557/* Check if the use of the antenna that ieee80211 told us to
1558 * use is possible. This will fall back to DEFAULT.
1559 * "antenna_nr" is the antenna identifier we got from ieee80211. */
1560u8 b43_ieee80211_antenna_sanitize(struct b43_wldev *dev,
1561 u8 antenna_nr)
1562{
1563 u8 antenna_mask;
1564
1565 if (antenna_nr == 0) {
1566 /* Zero means "use default antenna". That's always OK. */
1567 return 0;
1568 }
1569
1570 /* Get the mask of available antennas. */
1571 if (dev->phy.gmode)
1572 antenna_mask = dev->dev->bus_sprom->ant_available_bg;
1573 else
1574 antenna_mask = dev->dev->bus_sprom->ant_available_a;
1575
1576 if (!(antenna_mask & (1 << (antenna_nr - 1)))) {
1577 /* This antenna is not available. Fall back to default. */
1578 return 0;
1579 }
1580
1581 return antenna_nr;
1582}
1583
1584/* Convert a b43 antenna number value to the PHY TX control value. */
1585static u16 b43_antenna_to_phyctl(int antenna)
1586{
1587 switch (antenna) {
1588 case B43_ANTENNA0:
1589 return B43_TXH_PHY_ANT0;
1590 case B43_ANTENNA1:
1591 return B43_TXH_PHY_ANT1;
1592 case B43_ANTENNA2:
1593 return B43_TXH_PHY_ANT2;
1594 case B43_ANTENNA3:
1595 return B43_TXH_PHY_ANT3;
1596 case B43_ANTENNA_AUTO0:
1597 case B43_ANTENNA_AUTO1:
1598 return B43_TXH_PHY_ANT01AUTO;
1599 }
1600 B43_WARN_ON(1);
1601 return 0;
1602}
1603
1604static void b43_write_beacon_template(struct b43_wldev *dev,
1605 u16 ram_offset,
1606 u16 shm_size_offset)
1607{
1608 unsigned int i, len, variable_len;
1609 const struct ieee80211_mgmt *bcn;
1610 const u8 *ie;
1611 bool tim_found = false;
1612 unsigned int rate;
1613 u16 ctl;
1614 int antenna;
1615 struct ieee80211_tx_info *info;
1616 unsigned long flags;
1617 struct sk_buff *beacon_skb;
1618
1619 spin_lock_irqsave(&dev->wl->beacon_lock, flags);
1620 info = IEEE80211_SKB_CB(dev->wl->current_beacon);
1621 rate = ieee80211_get_tx_rate(dev->wl->hw, info)->hw_value;
1622 /* Clone the beacon, so it cannot go away, while we write it to hw. */
1623 beacon_skb = skb_clone(dev->wl->current_beacon, GFP_ATOMIC);
1624 spin_unlock_irqrestore(&dev->wl->beacon_lock, flags);
1625
1626 if (!beacon_skb) {
1627 b43dbg(dev->wl, "Could not upload beacon. "
1628 "Failed to clone beacon skb.");
1629 return;
1630 }
1631
1632 bcn = (const struct ieee80211_mgmt *)(beacon_skb->data);
1633 len = min_t(size_t, beacon_skb->len,
1634 0x200 - sizeof(struct b43_plcp_hdr6));
1635
1636 b43_write_template_common(dev, (const u8 *)bcn,
1637 len, ram_offset, shm_size_offset, rate);
1638
1639 /* Write the PHY TX control parameters. */
1640 antenna = B43_ANTENNA_DEFAULT;
1641 antenna = b43_antenna_to_phyctl(antenna);
1642 ctl = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_BEACPHYCTL);
1643 /* We can't send beacons with short preamble. Would get PHY errors. */
1644 ctl &= ~B43_TXH_PHY_SHORTPRMBL;
1645 ctl &= ~B43_TXH_PHY_ANT;
1646 ctl &= ~B43_TXH_PHY_ENC;
1647 ctl |= antenna;
1648 if (b43_is_cck_rate(rate))
1649 ctl |= B43_TXH_PHY_ENC_CCK;
1650 else
1651 ctl |= B43_TXH_PHY_ENC_OFDM;
1652 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_BEACPHYCTL, ctl);
1653
1654 /* Find the position of the TIM and the DTIM_period value
1655 * and write them to SHM. */
1656 ie = bcn->u.beacon.variable;
1657 variable_len = len - offsetof(struct ieee80211_mgmt, u.beacon.variable);
1658 for (i = 0; i < variable_len - 2; ) {
1659 uint8_t ie_id, ie_len;
1660
1661 ie_id = ie[i];
1662 ie_len = ie[i + 1];
1663 if (ie_id == 5) {
1664 u16 tim_position;
1665 u16 dtim_period;
1666 /* This is the TIM Information Element */
1667
1668 /* Check whether the ie_len is in the beacon data range. */
1669 if (variable_len < ie_len + 2 + i)
1670 break;
1671 /* A valid TIM is at least 4 bytes long. */
1672 if (ie_len < 4)
1673 break;
1674 tim_found = true;
1675
1676 tim_position = sizeof(struct b43_plcp_hdr6);
1677 tim_position += offsetof(struct ieee80211_mgmt, u.beacon.variable);
1678 tim_position += i;
1679
1680 dtim_period = ie[i + 3];
1681
1682 b43_shm_write16(dev, B43_SHM_SHARED,
1683 B43_SHM_SH_TIMBPOS, tim_position);
1684 b43_shm_write16(dev, B43_SHM_SHARED,
1685 B43_SHM_SH_DTIMPER, dtim_period);
1686 break;
1687 }
1688 i += ie_len + 2;
1689 }
1690 if (!tim_found) {
1691 /*
1692 * If ucode wants to modify TIM do it behind the beacon, this
1693 * will happen, for example, when doing mesh networking.
1694 */
1695 b43_shm_write16(dev, B43_SHM_SHARED,
1696 B43_SHM_SH_TIMBPOS,
1697 len + sizeof(struct b43_plcp_hdr6));
1698 b43_shm_write16(dev, B43_SHM_SHARED,
1699 B43_SHM_SH_DTIMPER, 0);
1700 }
1701 b43dbg(dev->wl, "Updated beacon template at 0x%x\n", ram_offset);
1702
1703 dev_kfree_skb_any(beacon_skb);
1704}
1705
1706static void b43_upload_beacon0(struct b43_wldev *dev)
1707{
1708 struct b43_wl *wl = dev->wl;
1709
1710 if (wl->beacon0_uploaded)
1711 return;
1712 b43_write_beacon_template(dev, B43_SHM_SH_BT_BASE0, B43_SHM_SH_BTL0);
1713 wl->beacon0_uploaded = true;
1714}
1715
1716static void b43_upload_beacon1(struct b43_wldev *dev)
1717{
1718 struct b43_wl *wl = dev->wl;
1719
1720 if (wl->beacon1_uploaded)
1721 return;
1722 b43_write_beacon_template(dev, B43_SHM_SH_BT_BASE1, B43_SHM_SH_BTL1);
1723 wl->beacon1_uploaded = true;
1724}
1725
1726static void handle_irq_beacon(struct b43_wldev *dev)
1727{
1728 struct b43_wl *wl = dev->wl;
1729 u32 cmd, beacon0_valid, beacon1_valid;
1730
1731 if (!b43_is_mode(wl, NL80211_IFTYPE_AP) &&
1732 !b43_is_mode(wl, NL80211_IFTYPE_MESH_POINT) &&
1733 !b43_is_mode(wl, NL80211_IFTYPE_ADHOC))
1734 return;
1735
1736 /* This is the bottom half of the asynchronous beacon update. */
1737
1738 /* Ignore interrupt in the future. */
1739 dev->irq_mask &= ~B43_IRQ_BEACON;
1740
1741 cmd = b43_read32(dev, B43_MMIO_MACCMD);
1742 beacon0_valid = (cmd & B43_MACCMD_BEACON0_VALID);
1743 beacon1_valid = (cmd & B43_MACCMD_BEACON1_VALID);
1744
1745 /* Schedule interrupt manually, if busy. */
1746 if (beacon0_valid && beacon1_valid) {
1747 b43_write32(dev, B43_MMIO_GEN_IRQ_REASON, B43_IRQ_BEACON);
1748 dev->irq_mask |= B43_IRQ_BEACON;
1749 return;
1750 }
1751
1752 if (unlikely(wl->beacon_templates_virgin)) {
1753 /* We never uploaded a beacon before.
1754 * Upload both templates now, but only mark one valid. */
1755 wl->beacon_templates_virgin = false;
1756 b43_upload_beacon0(dev);
1757 b43_upload_beacon1(dev);
1758 cmd = b43_read32(dev, B43_MMIO_MACCMD);
1759 cmd |= B43_MACCMD_BEACON0_VALID;
1760 b43_write32(dev, B43_MMIO_MACCMD, cmd);
1761 } else {
1762 if (!beacon0_valid) {
1763 b43_upload_beacon0(dev);
1764 cmd = b43_read32(dev, B43_MMIO_MACCMD);
1765 cmd |= B43_MACCMD_BEACON0_VALID;
1766 b43_write32(dev, B43_MMIO_MACCMD, cmd);
1767 } else if (!beacon1_valid) {
1768 b43_upload_beacon1(dev);
1769 cmd = b43_read32(dev, B43_MMIO_MACCMD);
1770 cmd |= B43_MACCMD_BEACON1_VALID;
1771 b43_write32(dev, B43_MMIO_MACCMD, cmd);
1772 }
1773 }
1774}
1775
1776static void b43_do_beacon_update_trigger_work(struct b43_wldev *dev)
1777{
1778 u32 old_irq_mask = dev->irq_mask;
1779
1780 /* update beacon right away or defer to irq */
1781 handle_irq_beacon(dev);
1782 if (old_irq_mask != dev->irq_mask) {
1783 /* The handler updated the IRQ mask. */
1784 B43_WARN_ON(!dev->irq_mask);
1785 if (b43_read32(dev, B43_MMIO_GEN_IRQ_MASK)) {
1786 b43_write32(dev, B43_MMIO_GEN_IRQ_MASK, dev->irq_mask);
1787 } else {
1788 /* Device interrupts are currently disabled. That means
1789 * we just ran the hardirq handler and scheduled the
1790 * IRQ thread. The thread will write the IRQ mask when
1791 * it finished, so there's nothing to do here. Writing
1792 * the mask _here_ would incorrectly re-enable IRQs. */
1793 }
1794 }
1795}
1796
1797static void b43_beacon_update_trigger_work(struct work_struct *work)
1798{
1799 struct b43_wl *wl = container_of(work, struct b43_wl,
1800 beacon_update_trigger);
1801 struct b43_wldev *dev;
1802
1803 mutex_lock(&wl->mutex);
1804 dev = wl->current_dev;
1805 if (likely(dev && (b43_status(dev) >= B43_STAT_INITIALIZED))) {
1806 if (b43_bus_host_is_sdio(dev->dev)) {
1807 /* wl->mutex is enough. */
1808 b43_do_beacon_update_trigger_work(dev);
1809 } else {
1810 spin_lock_irq(&wl->hardirq_lock);
1811 b43_do_beacon_update_trigger_work(dev);
1812 spin_unlock_irq(&wl->hardirq_lock);
1813 }
1814 }
1815 mutex_unlock(&wl->mutex);
1816}
1817
1818/* Asynchronously update the packet templates in template RAM. */
1819static void b43_update_templates(struct b43_wl *wl)
1820{
1821 struct sk_buff *beacon, *old_beacon;
1822 unsigned long flags;
1823
1824 /* This is the top half of the asynchronous beacon update.
1825 * The bottom half is the beacon IRQ.
1826 * Beacon update must be asynchronous to avoid sending an
1827 * invalid beacon. This can happen for example, if the firmware
1828 * transmits a beacon while we are updating it. */
1829
1830 /* We could modify the existing beacon and set the aid bit in
1831 * the TIM field, but that would probably require resizing and
1832 * moving of data within the beacon template.
1833 * Simply request a new beacon and let mac80211 do the hard work. */
1834 beacon = ieee80211_beacon_get(wl->hw, wl->vif);
1835 if (unlikely(!beacon))
1836 return;
1837
1838 spin_lock_irqsave(&wl->beacon_lock, flags);
1839 old_beacon = wl->current_beacon;
1840 wl->current_beacon = beacon;
1841 wl->beacon0_uploaded = false;
1842 wl->beacon1_uploaded = false;
1843 spin_unlock_irqrestore(&wl->beacon_lock, flags);
1844
1845 ieee80211_queue_work(wl->hw, &wl->beacon_update_trigger);
1846
1847 if (old_beacon)
1848 dev_kfree_skb_any(old_beacon);
1849}
1850
1851static void b43_set_beacon_int(struct b43_wldev *dev, u16 beacon_int)
1852{
1853 b43_time_lock(dev);
1854 if (dev->dev->core_rev >= 3) {
1855 b43_write32(dev, B43_MMIO_TSF_CFP_REP, (beacon_int << 16));
1856 b43_write32(dev, B43_MMIO_TSF_CFP_START, (beacon_int << 10));
1857 } else {
1858 b43_write16(dev, 0x606, (beacon_int >> 6));
1859 b43_write16(dev, 0x610, beacon_int);
1860 }
1861 b43_time_unlock(dev);
1862 b43dbg(dev->wl, "Set beacon interval to %u\n", beacon_int);
1863}
1864
1865static void b43_handle_firmware_panic(struct b43_wldev *dev)
1866{
1867 u16 reason;
1868
1869 /* Read the register that contains the reason code for the panic. */
1870 reason = b43_shm_read16(dev, B43_SHM_SCRATCH, B43_FWPANIC_REASON_REG);
1871 b43err(dev->wl, "Whoopsy, firmware panic! Reason: %u\n", reason);
1872
1873 switch (reason) {
1874 default:
1875 b43dbg(dev->wl, "The panic reason is unknown.\n");
1876 /* fallthrough */
1877 case B43_FWPANIC_DIE:
1878 /* Do not restart the controller or firmware.
1879 * The device is nonfunctional from now on.
1880 * Restarting would result in this panic to trigger again,
1881 * so we avoid that recursion. */
1882 break;
1883 case B43_FWPANIC_RESTART:
1884 b43_controller_restart(dev, "Microcode panic");
1885 break;
1886 }
1887}
1888
1889static void handle_irq_ucode_debug(struct b43_wldev *dev)
1890{
1891 unsigned int i, cnt;
1892 u16 reason, marker_id, marker_line;
1893 __le16 *buf;
1894
1895 /* The proprietary firmware doesn't have this IRQ. */
1896 if (!dev->fw.opensource)
1897 return;
1898
1899 /* Read the register that contains the reason code for this IRQ. */
1900 reason = b43_shm_read16(dev, B43_SHM_SCRATCH, B43_DEBUGIRQ_REASON_REG);
1901
1902 switch (reason) {
1903 case B43_DEBUGIRQ_PANIC:
1904 b43_handle_firmware_panic(dev);
1905 break;
1906 case B43_DEBUGIRQ_DUMP_SHM:
1907 if (!B43_DEBUG)
1908 break; /* Only with driver debugging enabled. */
1909 buf = kmalloc(4096, GFP_ATOMIC);
1910 if (!buf) {
1911 b43dbg(dev->wl, "SHM-dump: Failed to allocate memory\n");
1912 goto out;
1913 }
1914 for (i = 0; i < 4096; i += 2) {
1915 u16 tmp = b43_shm_read16(dev, B43_SHM_SHARED, i);
1916 buf[i / 2] = cpu_to_le16(tmp);
1917 }
1918 b43info(dev->wl, "Shared memory dump:\n");
1919 print_hex_dump(KERN_INFO, "", DUMP_PREFIX_OFFSET,
1920 16, 2, buf, 4096, 1);
1921 kfree(buf);
1922 break;
1923 case B43_DEBUGIRQ_DUMP_REGS:
1924 if (!B43_DEBUG)
1925 break; /* Only with driver debugging enabled. */
1926 b43info(dev->wl, "Microcode register dump:\n");
1927 for (i = 0, cnt = 0; i < 64; i++) {
1928 u16 tmp = b43_shm_read16(dev, B43_SHM_SCRATCH, i);
1929 if (cnt == 0)
1930 printk(KERN_INFO);
1931 printk("r%02u: 0x%04X ", i, tmp);
1932 cnt++;
1933 if (cnt == 6) {
1934 printk("\n");
1935 cnt = 0;
1936 }
1937 }
1938 printk("\n");
1939 break;
1940 case B43_DEBUGIRQ_MARKER:
1941 if (!B43_DEBUG)
1942 break; /* Only with driver debugging enabled. */
1943 marker_id = b43_shm_read16(dev, B43_SHM_SCRATCH,
1944 B43_MARKER_ID_REG);
1945 marker_line = b43_shm_read16(dev, B43_SHM_SCRATCH,
1946 B43_MARKER_LINE_REG);
1947 b43info(dev->wl, "The firmware just executed the MARKER(%u) "
1948 "at line number %u\n",
1949 marker_id, marker_line);
1950 break;
1951 default:
1952 b43dbg(dev->wl, "Debug-IRQ triggered for unknown reason: %u\n",
1953 reason);
1954 }
1955out:
1956 /* Acknowledge the debug-IRQ, so the firmware can continue. */
1957 b43_shm_write16(dev, B43_SHM_SCRATCH,
1958 B43_DEBUGIRQ_REASON_REG, B43_DEBUGIRQ_ACK);
1959}
1960
1961static void b43_do_interrupt_thread(struct b43_wldev *dev)
1962{
1963 u32 reason;
1964 u32 dma_reason[ARRAY_SIZE(dev->dma_reason)];
1965 u32 merged_dma_reason = 0;
1966 int i;
1967
1968 if (unlikely(b43_status(dev) != B43_STAT_STARTED))
1969 return;
1970
1971 reason = dev->irq_reason;
1972 for (i = 0; i < ARRAY_SIZE(dma_reason); i++) {
1973 dma_reason[i] = dev->dma_reason[i];
1974 merged_dma_reason |= dma_reason[i];
1975 }
1976
1977 if (unlikely(reason & B43_IRQ_MAC_TXERR))
1978 b43err(dev->wl, "MAC transmission error\n");
1979
1980 if (unlikely(reason & B43_IRQ_PHY_TXERR)) {
1981 b43err(dev->wl, "PHY transmission error\n");
1982 rmb();
1983 if (unlikely(atomic_dec_and_test(&dev->phy.txerr_cnt))) {
1984 atomic_set(&dev->phy.txerr_cnt,
1985 B43_PHY_TX_BADNESS_LIMIT);
1986 b43err(dev->wl, "Too many PHY TX errors, "
1987 "restarting the controller\n");
1988 b43_controller_restart(dev, "PHY TX errors");
1989 }
1990 }
1991
1992 if (unlikely(merged_dma_reason & (B43_DMAIRQ_FATALMASK))) {
1993 b43err(dev->wl,
1994 "Fatal DMA error: 0x%08X, 0x%08X, 0x%08X, 0x%08X, 0x%08X, 0x%08X\n",
1995 dma_reason[0], dma_reason[1],
1996 dma_reason[2], dma_reason[3],
1997 dma_reason[4], dma_reason[5]);
1998 b43err(dev->wl, "This device does not support DMA "
1999 "on your system. It will now be switched to PIO.\n");
2000 /* Fall back to PIO transfers if we get fatal DMA errors! */
2001 dev->use_pio = true;
2002 b43_controller_restart(dev, "DMA error");
2003 return;
2004 }
2005
2006 if (unlikely(reason & B43_IRQ_UCODE_DEBUG))
2007 handle_irq_ucode_debug(dev);
2008 if (reason & B43_IRQ_TBTT_INDI)
2009 handle_irq_tbtt_indication(dev);
2010 if (reason & B43_IRQ_ATIM_END)
2011 handle_irq_atim_end(dev);
2012 if (reason & B43_IRQ_BEACON)
2013 handle_irq_beacon(dev);
2014 if (reason & B43_IRQ_PMQ)
2015 handle_irq_pmq(dev);
2016 if (reason & B43_IRQ_TXFIFO_FLUSH_OK)
2017 ;/* TODO */
2018 if (reason & B43_IRQ_NOISESAMPLE_OK)
2019 handle_irq_noise(dev);
2020
2021 /* Check the DMA reason registers for received data. */
2022 if (dma_reason[0] & B43_DMAIRQ_RDESC_UFLOW) {
2023 if (B43_DEBUG)
2024 b43warn(dev->wl, "RX descriptor underrun\n");
2025 b43_dma_handle_rx_overflow(dev->dma.rx_ring);
2026 }
2027 if (dma_reason[0] & B43_DMAIRQ_RX_DONE) {
2028 if (b43_using_pio_transfers(dev))
2029 b43_pio_rx(dev->pio.rx_queue);
2030 else
2031 b43_dma_rx(dev->dma.rx_ring);
2032 }
2033 B43_WARN_ON(dma_reason[1] & B43_DMAIRQ_RX_DONE);
2034 B43_WARN_ON(dma_reason[2] & B43_DMAIRQ_RX_DONE);
2035 B43_WARN_ON(dma_reason[3] & B43_DMAIRQ_RX_DONE);
2036 B43_WARN_ON(dma_reason[4] & B43_DMAIRQ_RX_DONE);
2037 B43_WARN_ON(dma_reason[5] & B43_DMAIRQ_RX_DONE);
2038
2039 if (reason & B43_IRQ_TX_OK)
2040 handle_irq_transmit_status(dev);
2041
2042 /* Re-enable interrupts on the device by restoring the current interrupt mask. */
2043 b43_write32(dev, B43_MMIO_GEN_IRQ_MASK, dev->irq_mask);
2044
2045#if B43_DEBUG
2046 if (b43_debug(dev, B43_DBG_VERBOSESTATS)) {
2047 dev->irq_count++;
2048 for (i = 0; i < ARRAY_SIZE(dev->irq_bit_count); i++) {
2049 if (reason & (1 << i))
2050 dev->irq_bit_count[i]++;
2051 }
2052 }
2053#endif
2054}
2055
2056/* Interrupt thread handler. Handles device interrupts in thread context. */
2057static irqreturn_t b43_interrupt_thread_handler(int irq, void *dev_id)
2058{
2059 struct b43_wldev *dev = dev_id;
2060
2061 mutex_lock(&dev->wl->mutex);
2062 b43_do_interrupt_thread(dev);
2063 mutex_unlock(&dev->wl->mutex);
2064
2065 return IRQ_HANDLED;
2066}
2067
2068static irqreturn_t b43_do_interrupt(struct b43_wldev *dev)
2069{
2070 u32 reason;
2071
2072 /* This code runs under wl->hardirq_lock, but _only_ on non-SDIO busses.
2073 * On SDIO, this runs under wl->mutex. */
2074
2075 reason = b43_read32(dev, B43_MMIO_GEN_IRQ_REASON);
2076 if (reason == 0xffffffff) /* shared IRQ */
2077 return IRQ_NONE;
2078 reason &= dev->irq_mask;
2079 if (!reason)
2080 return IRQ_NONE;
2081
2082 dev->dma_reason[0] = b43_read32(dev, B43_MMIO_DMA0_REASON)
2083 & 0x0001FC00;
2084 dev->dma_reason[1] = b43_read32(dev, B43_MMIO_DMA1_REASON)
2085 & 0x0000DC00;
2086 dev->dma_reason[2] = b43_read32(dev, B43_MMIO_DMA2_REASON)
2087 & 0x0000DC00;
2088 dev->dma_reason[3] = b43_read32(dev, B43_MMIO_DMA3_REASON)
2089 & 0x0001DC00;
2090 dev->dma_reason[4] = b43_read32(dev, B43_MMIO_DMA4_REASON)
2091 & 0x0000DC00;
2092/* Unused ring
2093 dev->dma_reason[5] = b43_read32(dev, B43_MMIO_DMA5_REASON)
2094 & 0x0000DC00;
2095*/
2096
2097 /* ACK the interrupt. */
2098 b43_write32(dev, B43_MMIO_GEN_IRQ_REASON, reason);
2099 b43_write32(dev, B43_MMIO_DMA0_REASON, dev->dma_reason[0]);
2100 b43_write32(dev, B43_MMIO_DMA1_REASON, dev->dma_reason[1]);
2101 b43_write32(dev, B43_MMIO_DMA2_REASON, dev->dma_reason[2]);
2102 b43_write32(dev, B43_MMIO_DMA3_REASON, dev->dma_reason[3]);
2103 b43_write32(dev, B43_MMIO_DMA4_REASON, dev->dma_reason[4]);
2104/* Unused ring
2105 b43_write32(dev, B43_MMIO_DMA5_REASON, dev->dma_reason[5]);
2106*/
2107
2108 /* Disable IRQs on the device. The IRQ thread handler will re-enable them. */
2109 b43_write32(dev, B43_MMIO_GEN_IRQ_MASK, 0);
2110 /* Save the reason bitmasks for the IRQ thread handler. */
2111 dev->irq_reason = reason;
2112
2113 return IRQ_WAKE_THREAD;
2114}
2115
2116/* Interrupt handler top-half. This runs with interrupts disabled. */
2117static irqreturn_t b43_interrupt_handler(int irq, void *dev_id)
2118{
2119 struct b43_wldev *dev = dev_id;
2120 irqreturn_t ret;
2121
2122 if (unlikely(b43_status(dev) < B43_STAT_STARTED))
2123 return IRQ_NONE;
2124
2125 spin_lock(&dev->wl->hardirq_lock);
2126 ret = b43_do_interrupt(dev);
2127 spin_unlock(&dev->wl->hardirq_lock);
2128
2129 return ret;
2130}
2131
2132/* SDIO interrupt handler. This runs in process context. */
2133static void b43_sdio_interrupt_handler(struct b43_wldev *dev)
2134{
2135 struct b43_wl *wl = dev->wl;
2136 irqreturn_t ret;
2137
2138 mutex_lock(&wl->mutex);
2139
2140 ret = b43_do_interrupt(dev);
2141 if (ret == IRQ_WAKE_THREAD)
2142 b43_do_interrupt_thread(dev);
2143
2144 mutex_unlock(&wl->mutex);
2145}
2146
2147void b43_do_release_fw(struct b43_firmware_file *fw)
2148{
2149 release_firmware(fw->data);
2150 fw->data = NULL;
2151 fw->filename = NULL;
2152}
2153
2154static void b43_release_firmware(struct b43_wldev *dev)
2155{
2156 complete(&dev->fw_load_complete);
2157 b43_do_release_fw(&dev->fw.ucode);
2158 b43_do_release_fw(&dev->fw.pcm);
2159 b43_do_release_fw(&dev->fw.initvals);
2160 b43_do_release_fw(&dev->fw.initvals_band);
2161}
2162
2163static void b43_print_fw_helptext(struct b43_wl *wl, bool error)
2164{
2165 const char text[] =
2166 "You must go to " \
2167 "http://wireless.kernel.org/en/users/Drivers/b43#devicefirmware " \
2168 "and download the correct firmware for this driver version. " \
2169 "Please carefully read all instructions on this website.\n";
2170
2171 if (error)
2172 b43err(wl, text);
2173 else
2174 b43warn(wl, text);
2175}
2176
2177static void b43_fw_cb(const struct firmware *firmware, void *context)
2178{
2179 struct b43_request_fw_context *ctx = context;
2180
2181 ctx->blob = firmware;
2182 complete(&ctx->dev->fw_load_complete);
2183}
2184
2185int b43_do_request_fw(struct b43_request_fw_context *ctx,
2186 const char *name,
2187 struct b43_firmware_file *fw, bool async)
2188{
2189 struct b43_fw_header *hdr;
2190 u32 size;
2191 int err;
2192
2193 if (!name) {
2194 /* Don't fetch anything. Free possibly cached firmware. */
2195 /* FIXME: We should probably keep it anyway, to save some headache
2196 * on suspend/resume with multiband devices. */
2197 b43_do_release_fw(fw);
2198 return 0;
2199 }
2200 if (fw->filename) {
2201 if ((fw->type == ctx->req_type) &&
2202 (strcmp(fw->filename, name) == 0))
2203 return 0; /* Already have this fw. */
2204 /* Free the cached firmware first. */
2205 /* FIXME: We should probably do this later after we successfully
2206 * got the new fw. This could reduce headache with multiband devices.
2207 * We could also redesign this to cache the firmware for all possible
2208 * bands all the time. */
2209 b43_do_release_fw(fw);
2210 }
2211
2212 switch (ctx->req_type) {
2213 case B43_FWTYPE_PROPRIETARY:
2214 snprintf(ctx->fwname, sizeof(ctx->fwname),
2215 "b43%s/%s.fw",
2216 modparam_fwpostfix, name);
2217 break;
2218 case B43_FWTYPE_OPENSOURCE:
2219 snprintf(ctx->fwname, sizeof(ctx->fwname),
2220 "b43-open%s/%s.fw",
2221 modparam_fwpostfix, name);
2222 break;
2223 default:
2224 B43_WARN_ON(1);
2225 return -ENOSYS;
2226 }
2227 if (async) {
2228 /* do this part asynchronously */
2229 init_completion(&ctx->dev->fw_load_complete);
2230 err = request_firmware_nowait(THIS_MODULE, 1, ctx->fwname,
2231 ctx->dev->dev->dev, GFP_KERNEL,
2232 ctx, b43_fw_cb);
2233 if (err < 0) {
2234 pr_err("Unable to load firmware\n");
2235 return err;
2236 }
2237 wait_for_completion(&ctx->dev->fw_load_complete);
2238 if (ctx->blob)
2239 goto fw_ready;
2240 /* On some ARM systems, the async request will fail, but the next sync
2241 * request works. For this reason, we fall through here
2242 */
2243 }
2244 err = request_firmware(&ctx->blob, ctx->fwname,
2245 ctx->dev->dev->dev);
2246 if (err == -ENOENT) {
2247 snprintf(ctx->errors[ctx->req_type],
2248 sizeof(ctx->errors[ctx->req_type]),
2249 "Firmware file \"%s\" not found\n",
2250 ctx->fwname);
2251 return err;
2252 } else if (err) {
2253 snprintf(ctx->errors[ctx->req_type],
2254 sizeof(ctx->errors[ctx->req_type]),
2255 "Firmware file \"%s\" request failed (err=%d)\n",
2256 ctx->fwname, err);
2257 return err;
2258 }
2259fw_ready:
2260 if (ctx->blob->size < sizeof(struct b43_fw_header))
2261 goto err_format;
2262 hdr = (struct b43_fw_header *)(ctx->blob->data);
2263 switch (hdr->type) {
2264 case B43_FW_TYPE_UCODE:
2265 case B43_FW_TYPE_PCM:
2266 size = be32_to_cpu(hdr->size);
2267 if (size != ctx->blob->size - sizeof(struct b43_fw_header))
2268 goto err_format;
2269 /* fallthrough */
2270 case B43_FW_TYPE_IV:
2271 if (hdr->ver != 1)
2272 goto err_format;
2273 break;
2274 default:
2275 goto err_format;
2276 }
2277
2278 fw->data = ctx->blob;
2279 fw->filename = name;
2280 fw->type = ctx->req_type;
2281
2282 return 0;
2283
2284err_format:
2285 snprintf(ctx->errors[ctx->req_type],
2286 sizeof(ctx->errors[ctx->req_type]),
2287 "Firmware file \"%s\" format error.\n", ctx->fwname);
2288 release_firmware(ctx->blob);
2289
2290 return -EPROTO;
2291}
2292
2293/* http://bcm-v4.sipsolutions.net/802.11/Init/Firmware */
2294static int b43_try_request_fw(struct b43_request_fw_context *ctx)
2295{
2296 struct b43_wldev *dev = ctx->dev;
2297 struct b43_firmware *fw = &ctx->dev->fw;
2298 struct b43_phy *phy = &dev->phy;
2299 const u8 rev = ctx->dev->dev->core_rev;
2300 const char *filename;
2301 int err;
2302
2303 /* Get microcode */
2304 filename = NULL;
2305 switch (rev) {
2306 case 42:
2307 if (phy->type == B43_PHYTYPE_AC)
2308 filename = "ucode42";
2309 break;
2310 case 40:
2311 if (phy->type == B43_PHYTYPE_AC)
2312 filename = "ucode40";
2313 break;
2314 case 33:
2315 if (phy->type == B43_PHYTYPE_LCN40)
2316 filename = "ucode33_lcn40";
2317 break;
2318 case 30:
2319 if (phy->type == B43_PHYTYPE_N)
2320 filename = "ucode30_mimo";
2321 break;
2322 case 29:
2323 if (phy->type == B43_PHYTYPE_HT)
2324 filename = "ucode29_mimo";
2325 break;
2326 case 26:
2327 if (phy->type == B43_PHYTYPE_HT)
2328 filename = "ucode26_mimo";
2329 break;
2330 case 28:
2331 case 25:
2332 if (phy->type == B43_PHYTYPE_N)
2333 filename = "ucode25_mimo";
2334 else if (phy->type == B43_PHYTYPE_LCN)
2335 filename = "ucode25_lcn";
2336 break;
2337 case 24:
2338 if (phy->type == B43_PHYTYPE_LCN)
2339 filename = "ucode24_lcn";
2340 break;
2341 case 23:
2342 if (phy->type == B43_PHYTYPE_N)
2343 filename = "ucode16_mimo";
2344 break;
2345 case 16 ... 19:
2346 if (phy->type == B43_PHYTYPE_N)
2347 filename = "ucode16_mimo";
2348 else if (phy->type == B43_PHYTYPE_LP)
2349 filename = "ucode16_lp";
2350 break;
2351 case 15:
2352 filename = "ucode15";
2353 break;
2354 case 14:
2355 filename = "ucode14";
2356 break;
2357 case 13:
2358 filename = "ucode13";
2359 break;
2360 case 11 ... 12:
2361 filename = "ucode11";
2362 break;
2363 case 5 ... 10:
2364 filename = "ucode5";
2365 break;
2366 }
2367 if (!filename)
2368 goto err_no_ucode;
2369 err = b43_do_request_fw(ctx, filename, &fw->ucode, true);
2370 if (err)
2371 goto err_load;
2372
2373 /* Get PCM code */
2374 if ((rev >= 5) && (rev <= 10))
2375 filename = "pcm5";
2376 else if (rev >= 11)
2377 filename = NULL;
2378 else
2379 goto err_no_pcm;
2380 fw->pcm_request_failed = false;
2381 err = b43_do_request_fw(ctx, filename, &fw->pcm, false);
2382 if (err == -ENOENT) {
2383 /* We did not find a PCM file? Not fatal, but
2384 * core rev <= 10 must do without hwcrypto then. */
2385 fw->pcm_request_failed = true;
2386 } else if (err)
2387 goto err_load;
2388
2389 /* Get initvals */
2390 filename = NULL;
2391 switch (dev->phy.type) {
2392 case B43_PHYTYPE_G:
2393 if (rev == 13)
2394 filename = "b0g0initvals13";
2395 else if (rev >= 5 && rev <= 10)
2396 filename = "b0g0initvals5";
2397 break;
2398 case B43_PHYTYPE_N:
2399 if (rev == 30)
2400 filename = "n16initvals30";
2401 else if (rev == 28 || rev == 25)
2402 filename = "n0initvals25";
2403 else if (rev == 24)
2404 filename = "n0initvals24";
2405 else if (rev == 23)
2406 filename = "n0initvals16"; /* What about n0initvals22? */
2407 else if (rev >= 16 && rev <= 18)
2408 filename = "n0initvals16";
2409 else if (rev >= 11 && rev <= 12)
2410 filename = "n0initvals11";
2411 break;
2412 case B43_PHYTYPE_LP:
2413 if (rev >= 16 && rev <= 18)
2414 filename = "lp0initvals16";
2415 else if (rev == 15)
2416 filename = "lp0initvals15";
2417 else if (rev == 14)
2418 filename = "lp0initvals14";
2419 else if (rev == 13)
2420 filename = "lp0initvals13";
2421 break;
2422 case B43_PHYTYPE_HT:
2423 if (rev == 29)
2424 filename = "ht0initvals29";
2425 else if (rev == 26)
2426 filename = "ht0initvals26";
2427 break;
2428 case B43_PHYTYPE_LCN:
2429 if (rev == 24)
2430 filename = "lcn0initvals24";
2431 break;
2432 case B43_PHYTYPE_LCN40:
2433 if (rev == 33)
2434 filename = "lcn400initvals33";
2435 break;
2436 case B43_PHYTYPE_AC:
2437 if (rev == 42)
2438 filename = "ac1initvals42";
2439 else if (rev == 40)
2440 filename = "ac0initvals40";
2441 break;
2442 }
2443 if (!filename)
2444 goto err_no_initvals;
2445 err = b43_do_request_fw(ctx, filename, &fw->initvals, false);
2446 if (err)
2447 goto err_load;
2448
2449 /* Get bandswitch initvals */
2450 filename = NULL;
2451 switch (dev->phy.type) {
2452 case B43_PHYTYPE_G:
2453 if (rev == 13)
2454 filename = "b0g0bsinitvals13";
2455 else if (rev >= 5 && rev <= 10)
2456 filename = "b0g0bsinitvals5";
2457 break;
2458 case B43_PHYTYPE_N:
2459 if (rev == 30)
2460 filename = "n16bsinitvals30";
2461 else if (rev == 28 || rev == 25)
2462 filename = "n0bsinitvals25";
2463 else if (rev == 24)
2464 filename = "n0bsinitvals24";
2465 else if (rev == 23)
2466 filename = "n0bsinitvals16"; /* What about n0bsinitvals22? */
2467 else if (rev >= 16 && rev <= 18)
2468 filename = "n0bsinitvals16";
2469 else if (rev >= 11 && rev <= 12)
2470 filename = "n0bsinitvals11";
2471 break;
2472 case B43_PHYTYPE_LP:
2473 if (rev >= 16 && rev <= 18)
2474 filename = "lp0bsinitvals16";
2475 else if (rev == 15)
2476 filename = "lp0bsinitvals15";
2477 else if (rev == 14)
2478 filename = "lp0bsinitvals14";
2479 else if (rev == 13)
2480 filename = "lp0bsinitvals13";
2481 break;
2482 case B43_PHYTYPE_HT:
2483 if (rev == 29)
2484 filename = "ht0bsinitvals29";
2485 else if (rev == 26)
2486 filename = "ht0bsinitvals26";
2487 break;
2488 case B43_PHYTYPE_LCN:
2489 if (rev == 24)
2490 filename = "lcn0bsinitvals24";
2491 break;
2492 case B43_PHYTYPE_LCN40:
2493 if (rev == 33)
2494 filename = "lcn400bsinitvals33";
2495 break;
2496 case B43_PHYTYPE_AC:
2497 if (rev == 42)
2498 filename = "ac1bsinitvals42";
2499 else if (rev == 40)
2500 filename = "ac0bsinitvals40";
2501 break;
2502 }
2503 if (!filename)
2504 goto err_no_initvals;
2505 err = b43_do_request_fw(ctx, filename, &fw->initvals_band, false);
2506 if (err)
2507 goto err_load;
2508
2509 fw->opensource = (ctx->req_type == B43_FWTYPE_OPENSOURCE);
2510
2511 return 0;
2512
2513err_no_ucode:
2514 err = ctx->fatal_failure = -EOPNOTSUPP;
2515 b43err(dev->wl, "The driver does not know which firmware (ucode) "
2516 "is required for your device (wl-core rev %u)\n", rev);
2517 goto error;
2518
2519err_no_pcm:
2520 err = ctx->fatal_failure = -EOPNOTSUPP;
2521 b43err(dev->wl, "The driver does not know which firmware (PCM) "
2522 "is required for your device (wl-core rev %u)\n", rev);
2523 goto error;
2524
2525err_no_initvals:
2526 err = ctx->fatal_failure = -EOPNOTSUPP;
2527 b43err(dev->wl, "The driver does not know which firmware (initvals) "
2528 "is required for your device (wl-core rev %u)\n", rev);
2529 goto error;
2530
2531err_load:
2532 /* We failed to load this firmware image. The error message
2533 * already is in ctx->errors. Return and let our caller decide
2534 * what to do. */
2535 goto error;
2536
2537error:
2538 b43_release_firmware(dev);
2539 return err;
2540}
2541
2542static int b43_one_core_attach(struct b43_bus_dev *dev, struct b43_wl *wl);
2543static void b43_one_core_detach(struct b43_bus_dev *dev);
2544static int b43_rng_init(struct b43_wl *wl);
2545
2546static void b43_request_firmware(struct work_struct *work)
2547{
2548 struct b43_wl *wl = container_of(work,
2549 struct b43_wl, firmware_load);
2550 struct b43_wldev *dev = wl->current_dev;
2551 struct b43_request_fw_context *ctx;
2552 unsigned int i;
2553 int err;
2554 const char *errmsg;
2555
2556 ctx = kzalloc(sizeof(*ctx), GFP_KERNEL);
2557 if (!ctx)
2558 return;
2559 ctx->dev = dev;
2560
2561 ctx->req_type = B43_FWTYPE_PROPRIETARY;
2562 err = b43_try_request_fw(ctx);
2563 if (!err)
2564 goto start_ieee80211; /* Successfully loaded it. */
2565 /* Was fw version known? */
2566 if (ctx->fatal_failure)
2567 goto out;
2568
2569 /* proprietary fw not found, try open source */
2570 ctx->req_type = B43_FWTYPE_OPENSOURCE;
2571 err = b43_try_request_fw(ctx);
2572 if (!err)
2573 goto start_ieee80211; /* Successfully loaded it. */
2574 if(ctx->fatal_failure)
2575 goto out;
2576
2577 /* Could not find a usable firmware. Print the errors. */
2578 for (i = 0; i < B43_NR_FWTYPES; i++) {
2579 errmsg = ctx->errors[i];
2580 if (strlen(errmsg))
2581 b43err(dev->wl, "%s", errmsg);
2582 }
2583 b43_print_fw_helptext(dev->wl, 1);
2584 goto out;
2585
2586start_ieee80211:
2587 wl->hw->queues = B43_QOS_QUEUE_NUM;
2588 if (!modparam_qos || dev->fw.opensource ||
2589 dev->dev->chip_id == BCMA_CHIP_ID_BCM4331)
2590 wl->hw->queues = 1;
2591
2592 err = ieee80211_register_hw(wl->hw);
2593 if (err)
2594 goto out;
2595 wl->hw_registered = true;
2596 b43_leds_register(wl->current_dev);
2597
2598 /* Register HW RNG driver */
2599 b43_rng_init(wl);
2600
2601out:
2602 kfree(ctx);
2603}
2604
2605static int b43_upload_microcode(struct b43_wldev *dev)
2606{
2607 struct wiphy *wiphy = dev->wl->hw->wiphy;
2608 const size_t hdr_len = sizeof(struct b43_fw_header);
2609 const __be32 *data;
2610 unsigned int i, len;
2611 u16 fwrev, fwpatch, fwdate, fwtime;
2612 u32 tmp, macctl;
2613 int err = 0;
2614
2615 /* Jump the microcode PSM to offset 0 */
2616 macctl = b43_read32(dev, B43_MMIO_MACCTL);
2617 B43_WARN_ON(macctl & B43_MACCTL_PSM_RUN);
2618 macctl |= B43_MACCTL_PSM_JMP0;
2619 b43_write32(dev, B43_MMIO_MACCTL, macctl);
2620 /* Zero out all microcode PSM registers and shared memory. */
2621 for (i = 0; i < 64; i++)
2622 b43_shm_write16(dev, B43_SHM_SCRATCH, i, 0);
2623 for (i = 0; i < 4096; i += 2)
2624 b43_shm_write16(dev, B43_SHM_SHARED, i, 0);
2625
2626 /* Upload Microcode. */
2627 data = (__be32 *) (dev->fw.ucode.data->data + hdr_len);
2628 len = (dev->fw.ucode.data->size - hdr_len) / sizeof(__be32);
2629 b43_shm_control_word(dev, B43_SHM_UCODE | B43_SHM_AUTOINC_W, 0x0000);
2630 for (i = 0; i < len; i++) {
2631 b43_write32(dev, B43_MMIO_SHM_DATA, be32_to_cpu(data[i]));
2632 udelay(10);
2633 }
2634
2635 if (dev->fw.pcm.data) {
2636 /* Upload PCM data. */
2637 data = (__be32 *) (dev->fw.pcm.data->data + hdr_len);
2638 len = (dev->fw.pcm.data->size - hdr_len) / sizeof(__be32);
2639 b43_shm_control_word(dev, B43_SHM_HW, 0x01EA);
2640 b43_write32(dev, B43_MMIO_SHM_DATA, 0x00004000);
2641 /* No need for autoinc bit in SHM_HW */
2642 b43_shm_control_word(dev, B43_SHM_HW, 0x01EB);
2643 for (i = 0; i < len; i++) {
2644 b43_write32(dev, B43_MMIO_SHM_DATA, be32_to_cpu(data[i]));
2645 udelay(10);
2646 }
2647 }
2648
2649 b43_write32(dev, B43_MMIO_GEN_IRQ_REASON, B43_IRQ_ALL);
2650
2651 /* Start the microcode PSM */
2652 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_PSM_JMP0,
2653 B43_MACCTL_PSM_RUN);
2654
2655 /* Wait for the microcode to load and respond */
2656 i = 0;
2657 while (1) {
2658 tmp = b43_read32(dev, B43_MMIO_GEN_IRQ_REASON);
2659 if (tmp == B43_IRQ_MAC_SUSPENDED)
2660 break;
2661 i++;
2662 if (i >= 20) {
2663 b43err(dev->wl, "Microcode not responding\n");
2664 b43_print_fw_helptext(dev->wl, 1);
2665 err = -ENODEV;
2666 goto error;
2667 }
2668 msleep(50);
2669 }
2670 b43_read32(dev, B43_MMIO_GEN_IRQ_REASON); /* dummy read */
2671
2672 /* Get and check the revisions. */
2673 fwrev = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_UCODEREV);
2674 fwpatch = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_UCODEPATCH);
2675 fwdate = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_UCODEDATE);
2676 fwtime = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_UCODETIME);
2677
2678 if (fwrev <= 0x128) {
2679 b43err(dev->wl, "YOUR FIRMWARE IS TOO OLD. Firmware from "
2680 "binary drivers older than version 4.x is unsupported. "
2681 "You must upgrade your firmware files.\n");
2682 b43_print_fw_helptext(dev->wl, 1);
2683 err = -EOPNOTSUPP;
2684 goto error;
2685 }
2686 dev->fw.rev = fwrev;
2687 dev->fw.patch = fwpatch;
2688 if (dev->fw.rev >= 598)
2689 dev->fw.hdr_format = B43_FW_HDR_598;
2690 else if (dev->fw.rev >= 410)
2691 dev->fw.hdr_format = B43_FW_HDR_410;
2692 else
2693 dev->fw.hdr_format = B43_FW_HDR_351;
2694 WARN_ON(dev->fw.opensource != (fwdate == 0xFFFF));
2695
2696 dev->qos_enabled = dev->wl->hw->queues > 1;
2697 /* Default to firmware/hardware crypto acceleration. */
2698 dev->hwcrypto_enabled = true;
2699
2700 if (dev->fw.opensource) {
2701 u16 fwcapa;
2702
2703 /* Patchlevel info is encoded in the "time" field. */
2704 dev->fw.patch = fwtime;
2705 b43info(dev->wl, "Loading OpenSource firmware version %u.%u\n",
2706 dev->fw.rev, dev->fw.patch);
2707
2708 fwcapa = b43_fwcapa_read(dev);
2709 if (!(fwcapa & B43_FWCAPA_HWCRYPTO) || dev->fw.pcm_request_failed) {
2710 b43info(dev->wl, "Hardware crypto acceleration not supported by firmware\n");
2711 /* Disable hardware crypto and fall back to software crypto. */
2712 dev->hwcrypto_enabled = false;
2713 }
2714 /* adding QoS support should use an offline discovery mechanism */
2715 WARN(fwcapa & B43_FWCAPA_QOS, "QoS in OpenFW not supported\n");
2716 } else {
2717 b43info(dev->wl, "Loading firmware version %u.%u "
2718 "(20%.2i-%.2i-%.2i %.2i:%.2i:%.2i)\n",
2719 fwrev, fwpatch,
2720 (fwdate >> 12) & 0xF, (fwdate >> 8) & 0xF, fwdate & 0xFF,
2721 (fwtime >> 11) & 0x1F, (fwtime >> 5) & 0x3F, fwtime & 0x1F);
2722 if (dev->fw.pcm_request_failed) {
2723 b43warn(dev->wl, "No \"pcm5.fw\" firmware file found. "
2724 "Hardware accelerated cryptography is disabled.\n");
2725 b43_print_fw_helptext(dev->wl, 0);
2726 }
2727 }
2728
2729 snprintf(wiphy->fw_version, sizeof(wiphy->fw_version), "%u.%u",
2730 dev->fw.rev, dev->fw.patch);
2731 wiphy->hw_version = dev->dev->core_id;
2732
2733 if (dev->fw.hdr_format == B43_FW_HDR_351) {
2734 /* We're over the deadline, but we keep support for old fw
2735 * until it turns out to be in major conflict with something new. */
2736 b43warn(dev->wl, "You are using an old firmware image. "
2737 "Support for old firmware will be removed soon "
2738 "(official deadline was July 2008).\n");
2739 b43_print_fw_helptext(dev->wl, 0);
2740 }
2741
2742 return 0;
2743
2744error:
2745 /* Stop the microcode PSM. */
2746 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_PSM_RUN,
2747 B43_MACCTL_PSM_JMP0);
2748
2749 return err;
2750}
2751
2752static int b43_write_initvals(struct b43_wldev *dev,
2753 const struct b43_iv *ivals,
2754 size_t count,
2755 size_t array_size)
2756{
2757 const struct b43_iv *iv;
2758 u16 offset;
2759 size_t i;
2760 bool bit32;
2761
2762 BUILD_BUG_ON(sizeof(struct b43_iv) != 6);
2763 iv = ivals;
2764 for (i = 0; i < count; i++) {
2765 if (array_size < sizeof(iv->offset_size))
2766 goto err_format;
2767 array_size -= sizeof(iv->offset_size);
2768 offset = be16_to_cpu(iv->offset_size);
2769 bit32 = !!(offset & B43_IV_32BIT);
2770 offset &= B43_IV_OFFSET_MASK;
2771 if (offset >= 0x1000)
2772 goto err_format;
2773 if (bit32) {
2774 u32 value;
2775
2776 if (array_size < sizeof(iv->data.d32))
2777 goto err_format;
2778 array_size -= sizeof(iv->data.d32);
2779
2780 value = get_unaligned_be32(&iv->data.d32);
2781 b43_write32(dev, offset, value);
2782
2783 iv = (const struct b43_iv *)((const uint8_t *)iv +
2784 sizeof(__be16) +
2785 sizeof(__be32));
2786 } else {
2787 u16 value;
2788
2789 if (array_size < sizeof(iv->data.d16))
2790 goto err_format;
2791 array_size -= sizeof(iv->data.d16);
2792
2793 value = be16_to_cpu(iv->data.d16);
2794 b43_write16(dev, offset, value);
2795
2796 iv = (const struct b43_iv *)((const uint8_t *)iv +
2797 sizeof(__be16) +
2798 sizeof(__be16));
2799 }
2800 }
2801 if (array_size)
2802 goto err_format;
2803
2804 return 0;
2805
2806err_format:
2807 b43err(dev->wl, "Initial Values Firmware file-format error.\n");
2808 b43_print_fw_helptext(dev->wl, 1);
2809
2810 return -EPROTO;
2811}
2812
2813static int b43_upload_initvals(struct b43_wldev *dev)
2814{
2815 const size_t hdr_len = sizeof(struct b43_fw_header);
2816 const struct b43_fw_header *hdr;
2817 struct b43_firmware *fw = &dev->fw;
2818 const struct b43_iv *ivals;
2819 size_t count;
2820
2821 hdr = (const struct b43_fw_header *)(fw->initvals.data->data);
2822 ivals = (const struct b43_iv *)(fw->initvals.data->data + hdr_len);
2823 count = be32_to_cpu(hdr->size);
2824 return b43_write_initvals(dev, ivals, count,
2825 fw->initvals.data->size - hdr_len);
2826}
2827
2828static int b43_upload_initvals_band(struct b43_wldev *dev)
2829{
2830 const size_t hdr_len = sizeof(struct b43_fw_header);
2831 const struct b43_fw_header *hdr;
2832 struct b43_firmware *fw = &dev->fw;
2833 const struct b43_iv *ivals;
2834 size_t count;
2835
2836 if (!fw->initvals_band.data)
2837 return 0;
2838
2839 hdr = (const struct b43_fw_header *)(fw->initvals_band.data->data);
2840 ivals = (const struct b43_iv *)(fw->initvals_band.data->data + hdr_len);
2841 count = be32_to_cpu(hdr->size);
2842 return b43_write_initvals(dev, ivals, count,
2843 fw->initvals_band.data->size - hdr_len);
2844}
2845
2846/* Initialize the GPIOs
2847 * http://bcm-specs.sipsolutions.net/GPIO
2848 */
2849
2850#ifdef CONFIG_B43_SSB
2851static struct ssb_device *b43_ssb_gpio_dev(struct b43_wldev *dev)
2852{
2853 struct ssb_bus *bus = dev->dev->sdev->bus;
2854
2855#ifdef CONFIG_SSB_DRIVER_PCICORE
2856 return (bus->chipco.dev ? bus->chipco.dev : bus->pcicore.dev);
2857#else
2858 return bus->chipco.dev;
2859#endif
2860}
2861#endif
2862
2863static int b43_gpio_init(struct b43_wldev *dev)
2864{
2865#ifdef CONFIG_B43_SSB
2866 struct ssb_device *gpiodev;
2867#endif
2868 u32 mask, set;
2869
2870 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_GPOUTSMSK, 0);
2871 b43_maskset16(dev, B43_MMIO_GPIO_MASK, ~0, 0xF);
2872
2873 mask = 0x0000001F;
2874 set = 0x0000000F;
2875 if (dev->dev->chip_id == 0x4301) {
2876 mask |= 0x0060;
2877 set |= 0x0060;
2878 } else if (dev->dev->chip_id == 0x5354) {
2879 /* Don't allow overtaking buttons GPIOs */
2880 set &= 0x2; /* 0x2 is LED GPIO on BCM5354 */
2881 }
2882
2883 if (0 /* FIXME: conditional unknown */ ) {
2884 b43_write16(dev, B43_MMIO_GPIO_MASK,
2885 b43_read16(dev, B43_MMIO_GPIO_MASK)
2886 | 0x0100);
2887 /* BT Coexistance Input */
2888 mask |= 0x0080;
2889 set |= 0x0080;
2890 /* BT Coexistance Out */
2891 mask |= 0x0100;
2892 set |= 0x0100;
2893 }
2894 if (dev->dev->bus_sprom->boardflags_lo & B43_BFL_PACTRL) {
2895 /* PA is controlled by gpio 9, let ucode handle it */
2896 b43_write16(dev, B43_MMIO_GPIO_MASK,
2897 b43_read16(dev, B43_MMIO_GPIO_MASK)
2898 | 0x0200);
2899 mask |= 0x0200;
2900 set |= 0x0200;
2901 }
2902
2903 switch (dev->dev->bus_type) {
2904#ifdef CONFIG_B43_BCMA
2905 case B43_BUS_BCMA:
2906 bcma_chipco_gpio_control(&dev->dev->bdev->bus->drv_cc, mask, set);
2907 break;
2908#endif
2909#ifdef CONFIG_B43_SSB
2910 case B43_BUS_SSB:
2911 gpiodev = b43_ssb_gpio_dev(dev);
2912 if (gpiodev)
2913 ssb_write32(gpiodev, B43_GPIO_CONTROL,
2914 (ssb_read32(gpiodev, B43_GPIO_CONTROL)
2915 & ~mask) | set);
2916 break;
2917#endif
2918 }
2919
2920 return 0;
2921}
2922
2923/* Turn off all GPIO stuff. Call this on module unload, for example. */
2924static void b43_gpio_cleanup(struct b43_wldev *dev)
2925{
2926#ifdef CONFIG_B43_SSB
2927 struct ssb_device *gpiodev;
2928#endif
2929
2930 switch (dev->dev->bus_type) {
2931#ifdef CONFIG_B43_BCMA
2932 case B43_BUS_BCMA:
2933 bcma_chipco_gpio_control(&dev->dev->bdev->bus->drv_cc, ~0, 0);
2934 break;
2935#endif
2936#ifdef CONFIG_B43_SSB
2937 case B43_BUS_SSB:
2938 gpiodev = b43_ssb_gpio_dev(dev);
2939 if (gpiodev)
2940 ssb_write32(gpiodev, B43_GPIO_CONTROL, 0);
2941 break;
2942#endif
2943 }
2944}
2945
2946/* http://bcm-specs.sipsolutions.net/EnableMac */
2947void b43_mac_enable(struct b43_wldev *dev)
2948{
2949 if (b43_debug(dev, B43_DBG_FIRMWARE)) {
2950 u16 fwstate;
2951
2952 fwstate = b43_shm_read16(dev, B43_SHM_SHARED,
2953 B43_SHM_SH_UCODESTAT);
2954 if ((fwstate != B43_SHM_SH_UCODESTAT_SUSP) &&
2955 (fwstate != B43_SHM_SH_UCODESTAT_SLEEP)) {
2956 b43err(dev->wl, "b43_mac_enable(): The firmware "
2957 "should be suspended, but current state is %u\n",
2958 fwstate);
2959 }
2960 }
2961
2962 dev->mac_suspended--;
2963 B43_WARN_ON(dev->mac_suspended < 0);
2964 if (dev->mac_suspended == 0) {
2965 b43_maskset32(dev, B43_MMIO_MACCTL, ~0, B43_MACCTL_ENABLED);
2966 b43_write32(dev, B43_MMIO_GEN_IRQ_REASON,
2967 B43_IRQ_MAC_SUSPENDED);
2968 /* Commit writes */
2969 b43_read32(dev, B43_MMIO_MACCTL);
2970 b43_read32(dev, B43_MMIO_GEN_IRQ_REASON);
2971 b43_power_saving_ctl_bits(dev, 0);
2972 }
2973}
2974
2975/* http://bcm-specs.sipsolutions.net/SuspendMAC */
2976void b43_mac_suspend(struct b43_wldev *dev)
2977{
2978 int i;
2979 u32 tmp;
2980
2981 might_sleep();
2982 B43_WARN_ON(dev->mac_suspended < 0);
2983
2984 if (dev->mac_suspended == 0) {
2985 b43_power_saving_ctl_bits(dev, B43_PS_AWAKE);
2986 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_ENABLED, 0);
2987 /* force pci to flush the write */
2988 b43_read32(dev, B43_MMIO_MACCTL);
2989 for (i = 35; i; i--) {
2990 tmp = b43_read32(dev, B43_MMIO_GEN_IRQ_REASON);
2991 if (tmp & B43_IRQ_MAC_SUSPENDED)
2992 goto out;
2993 udelay(10);
2994 }
2995 /* Hm, it seems this will take some time. Use msleep(). */
2996 for (i = 40; i; i--) {
2997 tmp = b43_read32(dev, B43_MMIO_GEN_IRQ_REASON);
2998 if (tmp & B43_IRQ_MAC_SUSPENDED)
2999 goto out;
3000 msleep(1);
3001 }
3002 b43err(dev->wl, "MAC suspend failed\n");
3003 }
3004out:
3005 dev->mac_suspended++;
3006}
3007
3008/* http://bcm-v4.sipsolutions.net/802.11/PHY/N/MacPhyClkSet */
3009void b43_mac_phy_clock_set(struct b43_wldev *dev, bool on)
3010{
3011 u32 tmp;
3012
3013 switch (dev->dev->bus_type) {
3014#ifdef CONFIG_B43_BCMA
3015 case B43_BUS_BCMA:
3016 tmp = bcma_aread32(dev->dev->bdev, BCMA_IOCTL);
3017 if (on)
3018 tmp |= B43_BCMA_IOCTL_MACPHYCLKEN;
3019 else
3020 tmp &= ~B43_BCMA_IOCTL_MACPHYCLKEN;
3021 bcma_awrite32(dev->dev->bdev, BCMA_IOCTL, tmp);
3022 break;
3023#endif
3024#ifdef CONFIG_B43_SSB
3025 case B43_BUS_SSB:
3026 tmp = ssb_read32(dev->dev->sdev, SSB_TMSLOW);
3027 if (on)
3028 tmp |= B43_TMSLOW_MACPHYCLKEN;
3029 else
3030 tmp &= ~B43_TMSLOW_MACPHYCLKEN;
3031 ssb_write32(dev->dev->sdev, SSB_TMSLOW, tmp);
3032 break;
3033#endif
3034 }
3035}
3036
3037/* brcms_b_switch_macfreq */
3038void b43_mac_switch_freq(struct b43_wldev *dev, u8 spurmode)
3039{
3040 u16 chip_id = dev->dev->chip_id;
3041
3042 if (chip_id == BCMA_CHIP_ID_BCM4331) {
3043 switch (spurmode) {
3044 case 2: /* 168 Mhz: 2^26/168 = 0x61862 */
3045 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x1862);
3046 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0x6);
3047 break;
3048 case 1: /* 164 Mhz: 2^26/164 = 0x63e70 */
3049 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x3e70);
3050 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0x6);
3051 break;
3052 default: /* 160 Mhz: 2^26/160 = 0x66666 */
3053 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x6666);
3054 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0x6);
3055 break;
3056 }
3057 } else if (chip_id == BCMA_CHIP_ID_BCM43131 ||
3058 chip_id == BCMA_CHIP_ID_BCM43217 ||
3059 chip_id == BCMA_CHIP_ID_BCM43222 ||
3060 chip_id == BCMA_CHIP_ID_BCM43224 ||
3061 chip_id == BCMA_CHIP_ID_BCM43225 ||
3062 chip_id == BCMA_CHIP_ID_BCM43227 ||
3063 chip_id == BCMA_CHIP_ID_BCM43228) {
3064 switch (spurmode) {
3065 case 2: /* 126 Mhz */
3066 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x2082);
3067 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0x8);
3068 break;
3069 case 1: /* 123 Mhz */
3070 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x5341);
3071 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0x8);
3072 break;
3073 default: /* 120 Mhz */
3074 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x8889);
3075 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0x8);
3076 break;
3077 }
3078 } else if (dev->phy.type == B43_PHYTYPE_LCN) {
3079 switch (spurmode) {
3080 case 1: /* 82 Mhz */
3081 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0x7CE0);
3082 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0xC);
3083 break;
3084 default: /* 80 Mhz */
3085 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_LOW, 0xCCCD);
3086 b43_write16(dev, B43_MMIO_TSF_CLK_FRAC_HIGH, 0xC);
3087 break;
3088 }
3089 }
3090}
3091
3092static void b43_adjust_opmode(struct b43_wldev *dev)
3093{
3094 struct b43_wl *wl = dev->wl;
3095 u32 ctl;
3096 u16 cfp_pretbtt;
3097
3098 ctl = b43_read32(dev, B43_MMIO_MACCTL);
3099 /* Reset status to STA infrastructure mode. */
3100 ctl &= ~B43_MACCTL_AP;
3101 ctl &= ~B43_MACCTL_KEEP_CTL;
3102 ctl &= ~B43_MACCTL_KEEP_BADPLCP;
3103 ctl &= ~B43_MACCTL_KEEP_BAD;
3104 ctl &= ~B43_MACCTL_PROMISC;
3105 ctl &= ~B43_MACCTL_BEACPROMISC;
3106 ctl |= B43_MACCTL_INFRA;
3107
3108 if (b43_is_mode(wl, NL80211_IFTYPE_AP) ||
3109 b43_is_mode(wl, NL80211_IFTYPE_MESH_POINT))
3110 ctl |= B43_MACCTL_AP;
3111 else if (b43_is_mode(wl, NL80211_IFTYPE_ADHOC))
3112 ctl &= ~B43_MACCTL_INFRA;
3113
3114 if (wl->filter_flags & FIF_CONTROL)
3115 ctl |= B43_MACCTL_KEEP_CTL;
3116 if (wl->filter_flags & FIF_FCSFAIL)
3117 ctl |= B43_MACCTL_KEEP_BAD;
3118 if (wl->filter_flags & FIF_PLCPFAIL)
3119 ctl |= B43_MACCTL_KEEP_BADPLCP;
3120 if (wl->filter_flags & FIF_BCN_PRBRESP_PROMISC)
3121 ctl |= B43_MACCTL_BEACPROMISC;
3122
3123 /* Workaround: On old hardware the HW-MAC-address-filter
3124 * doesn't work properly, so always run promisc in filter
3125 * it in software. */
3126 if (dev->dev->core_rev <= 4)
3127 ctl |= B43_MACCTL_PROMISC;
3128
3129 b43_write32(dev, B43_MMIO_MACCTL, ctl);
3130
3131 cfp_pretbtt = 2;
3132 if ((ctl & B43_MACCTL_INFRA) && !(ctl & B43_MACCTL_AP)) {
3133 if (dev->dev->chip_id == 0x4306 &&
3134 dev->dev->chip_rev == 3)
3135 cfp_pretbtt = 100;
3136 else
3137 cfp_pretbtt = 50;
3138 }
3139 b43_write16(dev, 0x612, cfp_pretbtt);
3140
3141 /* FIXME: We don't currently implement the PMQ mechanism,
3142 * so always disable it. If we want to implement PMQ,
3143 * we need to enable it here (clear DISCPMQ) in AP mode.
3144 */
3145 if (0 /* ctl & B43_MACCTL_AP */)
3146 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_DISCPMQ, 0);
3147 else
3148 b43_maskset32(dev, B43_MMIO_MACCTL, ~0, B43_MACCTL_DISCPMQ);
3149}
3150
3151static void b43_rate_memory_write(struct b43_wldev *dev, u16 rate, int is_ofdm)
3152{
3153 u16 offset;
3154
3155 if (is_ofdm) {
3156 offset = 0x480;
3157 offset += (b43_plcp_get_ratecode_ofdm(rate) & 0x000F) * 2;
3158 } else {
3159 offset = 0x4C0;
3160 offset += (b43_plcp_get_ratecode_cck(rate) & 0x000F) * 2;
3161 }
3162 b43_shm_write16(dev, B43_SHM_SHARED, offset + 0x20,
3163 b43_shm_read16(dev, B43_SHM_SHARED, offset));
3164}
3165
3166static void b43_rate_memory_init(struct b43_wldev *dev)
3167{
3168 switch (dev->phy.type) {
3169 case B43_PHYTYPE_G:
3170 case B43_PHYTYPE_N:
3171 case B43_PHYTYPE_LP:
3172 case B43_PHYTYPE_HT:
3173 case B43_PHYTYPE_LCN:
3174 b43_rate_memory_write(dev, B43_OFDM_RATE_6MB, 1);
3175 b43_rate_memory_write(dev, B43_OFDM_RATE_9MB, 1);
3176 b43_rate_memory_write(dev, B43_OFDM_RATE_12MB, 1);
3177 b43_rate_memory_write(dev, B43_OFDM_RATE_18MB, 1);
3178 b43_rate_memory_write(dev, B43_OFDM_RATE_24MB, 1);
3179 b43_rate_memory_write(dev, B43_OFDM_RATE_36MB, 1);
3180 b43_rate_memory_write(dev, B43_OFDM_RATE_48MB, 1);
3181 b43_rate_memory_write(dev, B43_OFDM_RATE_54MB, 1);
3182 /* fallthrough */
3183 case B43_PHYTYPE_B:
3184 b43_rate_memory_write(dev, B43_CCK_RATE_1MB, 0);
3185 b43_rate_memory_write(dev, B43_CCK_RATE_2MB, 0);
3186 b43_rate_memory_write(dev, B43_CCK_RATE_5MB, 0);
3187 b43_rate_memory_write(dev, B43_CCK_RATE_11MB, 0);
3188 break;
3189 default:
3190 B43_WARN_ON(1);
3191 }
3192}
3193
3194/* Set the default values for the PHY TX Control Words. */
3195static void b43_set_phytxctl_defaults(struct b43_wldev *dev)
3196{
3197 u16 ctl = 0;
3198
3199 ctl |= B43_TXH_PHY_ENC_CCK;
3200 ctl |= B43_TXH_PHY_ANT01AUTO;
3201 ctl |= B43_TXH_PHY_TXPWR;
3202
3203 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_BEACPHYCTL, ctl);
3204 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_ACKCTSPHYCTL, ctl);
3205 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PRPHYCTL, ctl);
3206}
3207
3208/* Set the TX-Antenna for management frames sent by firmware. */
3209static void b43_mgmtframe_txantenna(struct b43_wldev *dev, int antenna)
3210{
3211 u16 ant;
3212 u16 tmp;
3213
3214 ant = b43_antenna_to_phyctl(antenna);
3215
3216 /* For ACK/CTS */
3217 tmp = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_ACKCTSPHYCTL);
3218 tmp = (tmp & ~B43_TXH_PHY_ANT) | ant;
3219 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_ACKCTSPHYCTL, tmp);
3220 /* For Probe Resposes */
3221 tmp = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_PRPHYCTL);
3222 tmp = (tmp & ~B43_TXH_PHY_ANT) | ant;
3223 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PRPHYCTL, tmp);
3224}
3225
3226/* This is the opposite of b43_chip_init() */
3227static void b43_chip_exit(struct b43_wldev *dev)
3228{
3229 b43_phy_exit(dev);
3230 b43_gpio_cleanup(dev);
3231 /* firmware is released later */
3232}
3233
3234/* Initialize the chip
3235 * http://bcm-specs.sipsolutions.net/ChipInit
3236 */
3237static int b43_chip_init(struct b43_wldev *dev)
3238{
3239 struct b43_phy *phy = &dev->phy;
3240 int err;
3241 u32 macctl;
3242 u16 value16;
3243
3244 /* Initialize the MAC control */
3245 macctl = B43_MACCTL_IHR_ENABLED | B43_MACCTL_SHM_ENABLED;
3246 if (dev->phy.gmode)
3247 macctl |= B43_MACCTL_GMODE;
3248 macctl |= B43_MACCTL_INFRA;
3249 b43_write32(dev, B43_MMIO_MACCTL, macctl);
3250
3251 err = b43_upload_microcode(dev);
3252 if (err)
3253 goto out; /* firmware is released later */
3254
3255 err = b43_gpio_init(dev);
3256 if (err)
3257 goto out; /* firmware is released later */
3258
3259 err = b43_upload_initvals(dev);
3260 if (err)
3261 goto err_gpio_clean;
3262
3263 err = b43_upload_initvals_band(dev);
3264 if (err)
3265 goto err_gpio_clean;
3266
3267 /* Turn the Analog on and initialize the PHY. */
3268 phy->ops->switch_analog(dev, 1);
3269 err = b43_phy_init(dev);
3270 if (err)
3271 goto err_gpio_clean;
3272
3273 /* Disable Interference Mitigation. */
3274 if (phy->ops->interf_mitigation)
3275 phy->ops->interf_mitigation(dev, B43_INTERFMODE_NONE);
3276
3277 /* Select the antennae */
3278 if (phy->ops->set_rx_antenna)
3279 phy->ops->set_rx_antenna(dev, B43_ANTENNA_DEFAULT);
3280 b43_mgmtframe_txantenna(dev, B43_ANTENNA_DEFAULT);
3281
3282 if (phy->type == B43_PHYTYPE_B) {
3283 value16 = b43_read16(dev, 0x005E);
3284 value16 |= 0x0004;
3285 b43_write16(dev, 0x005E, value16);
3286 }
3287 b43_write32(dev, 0x0100, 0x01000000);
3288 if (dev->dev->core_rev < 5)
3289 b43_write32(dev, 0x010C, 0x01000000);
3290
3291 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_INFRA, 0);
3292 b43_maskset32(dev, B43_MMIO_MACCTL, ~0, B43_MACCTL_INFRA);
3293
3294 /* Probe Response Timeout value */
3295 /* FIXME: Default to 0, has to be set by ioctl probably... :-/ */
3296 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PRMAXTIME, 0);
3297
3298 /* Initially set the wireless operation mode. */
3299 b43_adjust_opmode(dev);
3300
3301 if (dev->dev->core_rev < 3) {
3302 b43_write16(dev, 0x060E, 0x0000);
3303 b43_write16(dev, 0x0610, 0x8000);
3304 b43_write16(dev, 0x0604, 0x0000);
3305 b43_write16(dev, 0x0606, 0x0200);
3306 } else {
3307 b43_write32(dev, 0x0188, 0x80000000);
3308 b43_write32(dev, 0x018C, 0x02000000);
3309 }
3310 b43_write32(dev, B43_MMIO_GEN_IRQ_REASON, 0x00004000);
3311 b43_write32(dev, B43_MMIO_DMA0_IRQ_MASK, 0x0001FC00);
3312 b43_write32(dev, B43_MMIO_DMA1_IRQ_MASK, 0x0000DC00);
3313 b43_write32(dev, B43_MMIO_DMA2_IRQ_MASK, 0x0000DC00);
3314 b43_write32(dev, B43_MMIO_DMA3_IRQ_MASK, 0x0001DC00);
3315 b43_write32(dev, B43_MMIO_DMA4_IRQ_MASK, 0x0000DC00);
3316 b43_write32(dev, B43_MMIO_DMA5_IRQ_MASK, 0x0000DC00);
3317
3318 b43_mac_phy_clock_set(dev, true);
3319
3320 switch (dev->dev->bus_type) {
3321#ifdef CONFIG_B43_BCMA
3322 case B43_BUS_BCMA:
3323 /* FIXME: 0xE74 is quite common, but should be read from CC */
3324 b43_write16(dev, B43_MMIO_POWERUP_DELAY, 0xE74);
3325 break;
3326#endif
3327#ifdef CONFIG_B43_SSB
3328 case B43_BUS_SSB:
3329 b43_write16(dev, B43_MMIO_POWERUP_DELAY,
3330 dev->dev->sdev->bus->chipco.fast_pwrup_delay);
3331 break;
3332#endif
3333 }
3334
3335 err = 0;
3336 b43dbg(dev->wl, "Chip initialized\n");
3337out:
3338 return err;
3339
3340err_gpio_clean:
3341 b43_gpio_cleanup(dev);
3342 return err;
3343}
3344
3345static void b43_periodic_every60sec(struct b43_wldev *dev)
3346{
3347 const struct b43_phy_operations *ops = dev->phy.ops;
3348
3349 if (ops->pwork_60sec)
3350 ops->pwork_60sec(dev);
3351
3352 /* Force check the TX power emission now. */
3353 b43_phy_txpower_check(dev, B43_TXPWR_IGNORE_TIME);
3354}
3355
3356static void b43_periodic_every30sec(struct b43_wldev *dev)
3357{
3358 /* Update device statistics. */
3359 b43_calculate_link_quality(dev);
3360}
3361
3362static void b43_periodic_every15sec(struct b43_wldev *dev)
3363{
3364 struct b43_phy *phy = &dev->phy;
3365 u16 wdr;
3366
3367 if (dev->fw.opensource) {
3368 /* Check if the firmware is still alive.
3369 * It will reset the watchdog counter to 0 in its idle loop. */
3370 wdr = b43_shm_read16(dev, B43_SHM_SCRATCH, B43_WATCHDOG_REG);
3371 if (unlikely(wdr)) {
3372 b43err(dev->wl, "Firmware watchdog: The firmware died!\n");
3373 b43_controller_restart(dev, "Firmware watchdog");
3374 return;
3375 } else {
3376 b43_shm_write16(dev, B43_SHM_SCRATCH,
3377 B43_WATCHDOG_REG, 1);
3378 }
3379 }
3380
3381 if (phy->ops->pwork_15sec)
3382 phy->ops->pwork_15sec(dev);
3383
3384 atomic_set(&phy->txerr_cnt, B43_PHY_TX_BADNESS_LIMIT);
3385 wmb();
3386
3387#if B43_DEBUG
3388 if (b43_debug(dev, B43_DBG_VERBOSESTATS)) {
3389 unsigned int i;
3390
3391 b43dbg(dev->wl, "Stats: %7u IRQs/sec, %7u TX/sec, %7u RX/sec\n",
3392 dev->irq_count / 15,
3393 dev->tx_count / 15,
3394 dev->rx_count / 15);
3395 dev->irq_count = 0;
3396 dev->tx_count = 0;
3397 dev->rx_count = 0;
3398 for (i = 0; i < ARRAY_SIZE(dev->irq_bit_count); i++) {
3399 if (dev->irq_bit_count[i]) {
3400 b43dbg(dev->wl, "Stats: %7u IRQ-%02u/sec (0x%08X)\n",
3401 dev->irq_bit_count[i] / 15, i, (1 << i));
3402 dev->irq_bit_count[i] = 0;
3403 }
3404 }
3405 }
3406#endif
3407}
3408
3409static void do_periodic_work(struct b43_wldev *dev)
3410{
3411 unsigned int state;
3412
3413 state = dev->periodic_state;
3414 if (state % 4 == 0)
3415 b43_periodic_every60sec(dev);
3416 if (state % 2 == 0)
3417 b43_periodic_every30sec(dev);
3418 b43_periodic_every15sec(dev);
3419}
3420
3421/* Periodic work locking policy:
3422 * The whole periodic work handler is protected by
3423 * wl->mutex. If another lock is needed somewhere in the
3424 * pwork callchain, it's acquired in-place, where it's needed.
3425 */
3426static void b43_periodic_work_handler(struct work_struct *work)
3427{
3428 struct b43_wldev *dev = container_of(work, struct b43_wldev,
3429 periodic_work.work);
3430 struct b43_wl *wl = dev->wl;
3431 unsigned long delay;
3432
3433 mutex_lock(&wl->mutex);
3434
3435 if (unlikely(b43_status(dev) != B43_STAT_STARTED))
3436 goto out;
3437 if (b43_debug(dev, B43_DBG_PWORK_STOP))
3438 goto out_requeue;
3439
3440 do_periodic_work(dev);
3441
3442 dev->periodic_state++;
3443out_requeue:
3444 if (b43_debug(dev, B43_DBG_PWORK_FAST))
3445 delay = msecs_to_jiffies(50);
3446 else
3447 delay = round_jiffies_relative(HZ * 15);
3448 ieee80211_queue_delayed_work(wl->hw, &dev->periodic_work, delay);
3449out:
3450 mutex_unlock(&wl->mutex);
3451}
3452
3453static void b43_periodic_tasks_setup(struct b43_wldev *dev)
3454{
3455 struct delayed_work *work = &dev->periodic_work;
3456
3457 dev->periodic_state = 0;
3458 INIT_DELAYED_WORK(work, b43_periodic_work_handler);
3459 ieee80211_queue_delayed_work(dev->wl->hw, work, 0);
3460}
3461
3462/* Check if communication with the device works correctly. */
3463static int b43_validate_chipaccess(struct b43_wldev *dev)
3464{
3465 u32 v, backup0, backup4;
3466
3467 backup0 = b43_shm_read32(dev, B43_SHM_SHARED, 0);
3468 backup4 = b43_shm_read32(dev, B43_SHM_SHARED, 4);
3469
3470 /* Check for read/write and endianness problems. */
3471 b43_shm_write32(dev, B43_SHM_SHARED, 0, 0x55AAAA55);
3472 if (b43_shm_read32(dev, B43_SHM_SHARED, 0) != 0x55AAAA55)
3473 goto error;
3474 b43_shm_write32(dev, B43_SHM_SHARED, 0, 0xAA5555AA);
3475 if (b43_shm_read32(dev, B43_SHM_SHARED, 0) != 0xAA5555AA)
3476 goto error;
3477
3478 /* Check if unaligned 32bit SHM_SHARED access works properly.
3479 * However, don't bail out on failure, because it's noncritical. */
3480 b43_shm_write16(dev, B43_SHM_SHARED, 0, 0x1122);
3481 b43_shm_write16(dev, B43_SHM_SHARED, 2, 0x3344);
3482 b43_shm_write16(dev, B43_SHM_SHARED, 4, 0x5566);
3483 b43_shm_write16(dev, B43_SHM_SHARED, 6, 0x7788);
3484 if (b43_shm_read32(dev, B43_SHM_SHARED, 2) != 0x55663344)
3485 b43warn(dev->wl, "Unaligned 32bit SHM read access is broken\n");
3486 b43_shm_write32(dev, B43_SHM_SHARED, 2, 0xAABBCCDD);
3487 if (b43_shm_read16(dev, B43_SHM_SHARED, 0) != 0x1122 ||
3488 b43_shm_read16(dev, B43_SHM_SHARED, 2) != 0xCCDD ||
3489 b43_shm_read16(dev, B43_SHM_SHARED, 4) != 0xAABB ||
3490 b43_shm_read16(dev, B43_SHM_SHARED, 6) != 0x7788)
3491 b43warn(dev->wl, "Unaligned 32bit SHM write access is broken\n");
3492
3493 b43_shm_write32(dev, B43_SHM_SHARED, 0, backup0);
3494 b43_shm_write32(dev, B43_SHM_SHARED, 4, backup4);
3495
3496 if ((dev->dev->core_rev >= 3) && (dev->dev->core_rev <= 10)) {
3497 /* The 32bit register shadows the two 16bit registers
3498 * with update sideeffects. Validate this. */
3499 b43_write16(dev, B43_MMIO_TSF_CFP_START, 0xAAAA);
3500 b43_write32(dev, B43_MMIO_TSF_CFP_START, 0xCCCCBBBB);
3501 if (b43_read16(dev, B43_MMIO_TSF_CFP_START_LOW) != 0xBBBB)
3502 goto error;
3503 if (b43_read16(dev, B43_MMIO_TSF_CFP_START_HIGH) != 0xCCCC)
3504 goto error;
3505 }
3506 b43_write32(dev, B43_MMIO_TSF_CFP_START, 0);
3507
3508 v = b43_read32(dev, B43_MMIO_MACCTL);
3509 v |= B43_MACCTL_GMODE;
3510 if (v != (B43_MACCTL_GMODE | B43_MACCTL_IHR_ENABLED))
3511 goto error;
3512
3513 return 0;
3514error:
3515 b43err(dev->wl, "Failed to validate the chipaccess\n");
3516 return -ENODEV;
3517}
3518
3519static void b43_security_init(struct b43_wldev *dev)
3520{
3521 dev->ktp = b43_shm_read16(dev, B43_SHM_SHARED, B43_SHM_SH_KTP);
3522 /* KTP is a word address, but we address SHM bytewise.
3523 * So multiply by two.
3524 */
3525 dev->ktp *= 2;
3526 /* Number of RCMTA address slots */
3527 b43_write16(dev, B43_MMIO_RCMTA_COUNT, B43_NR_PAIRWISE_KEYS);
3528 /* Clear the key memory. */
3529 b43_clear_keys(dev);
3530}
3531
3532#ifdef CONFIG_B43_HWRNG
3533static int b43_rng_read(struct hwrng *rng, u32 *data)
3534{
3535 struct b43_wl *wl = (struct b43_wl *)rng->priv;
3536 struct b43_wldev *dev;
3537 int count = -ENODEV;
3538
3539 mutex_lock(&wl->mutex);
3540 dev = wl->current_dev;
3541 if (likely(dev && b43_status(dev) >= B43_STAT_INITIALIZED)) {
3542 *data = b43_read16(dev, B43_MMIO_RNG);
3543 count = sizeof(u16);
3544 }
3545 mutex_unlock(&wl->mutex);
3546
3547 return count;
3548}
3549#endif /* CONFIG_B43_HWRNG */
3550
3551static void b43_rng_exit(struct b43_wl *wl)
3552{
3553#ifdef CONFIG_B43_HWRNG
3554 if (wl->rng_initialized)
3555 hwrng_unregister(&wl->rng);
3556#endif /* CONFIG_B43_HWRNG */
3557}
3558
3559static int b43_rng_init(struct b43_wl *wl)
3560{
3561 int err = 0;
3562
3563#ifdef CONFIG_B43_HWRNG
3564 snprintf(wl->rng_name, ARRAY_SIZE(wl->rng_name),
3565 "%s_%s", KBUILD_MODNAME, wiphy_name(wl->hw->wiphy));
3566 wl->rng.name = wl->rng_name;
3567 wl->rng.data_read = b43_rng_read;
3568 wl->rng.priv = (unsigned long)wl;
3569 wl->rng_initialized = true;
3570 err = hwrng_register(&wl->rng);
3571 if (err) {
3572 wl->rng_initialized = false;
3573 b43err(wl, "Failed to register the random "
3574 "number generator (%d)\n", err);
3575 }
3576#endif /* CONFIG_B43_HWRNG */
3577
3578 return err;
3579}
3580
3581static void b43_tx_work(struct work_struct *work)
3582{
3583 struct b43_wl *wl = container_of(work, struct b43_wl, tx_work);
3584 struct b43_wldev *dev;
3585 struct sk_buff *skb;
3586 int queue_num;
3587 int err = 0;
3588
3589 mutex_lock(&wl->mutex);
3590 dev = wl->current_dev;
3591 if (unlikely(!dev || b43_status(dev) < B43_STAT_STARTED)) {
3592 mutex_unlock(&wl->mutex);
3593 return;
3594 }
3595
3596 for (queue_num = 0; queue_num < B43_QOS_QUEUE_NUM; queue_num++) {
3597 while (skb_queue_len(&wl->tx_queue[queue_num])) {
3598 skb = skb_dequeue(&wl->tx_queue[queue_num]);
3599 if (b43_using_pio_transfers(dev))
3600 err = b43_pio_tx(dev, skb);
3601 else
3602 err = b43_dma_tx(dev, skb);
3603 if (err == -ENOSPC) {
3604 wl->tx_queue_stopped[queue_num] = true;
3605 b43_stop_queue(dev, queue_num);
3606 skb_queue_head(&wl->tx_queue[queue_num], skb);
3607 break;
3608 }
3609 if (unlikely(err))
3610 ieee80211_free_txskb(wl->hw, skb);
3611 err = 0;
3612 }
3613
3614 if (!err)
3615 wl->tx_queue_stopped[queue_num] = false;
3616 }
3617
3618#if B43_DEBUG
3619 dev->tx_count++;
3620#endif
3621 mutex_unlock(&wl->mutex);
3622}
3623
3624static void b43_op_tx(struct ieee80211_hw *hw,
3625 struct ieee80211_tx_control *control,
3626 struct sk_buff *skb)
3627{
3628 struct b43_wl *wl = hw_to_b43_wl(hw);
3629 u16 skb_queue_mapping;
3630
3631 if (unlikely(skb->len < 2 + 2 + 6)) {
3632 /* Too short, this can't be a valid frame. */
3633 ieee80211_free_txskb(hw, skb);
3634 return;
3635 }
3636 B43_WARN_ON(skb_shinfo(skb)->nr_frags);
3637
3638 skb_queue_mapping = skb_get_queue_mapping(skb);
3639 skb_queue_tail(&wl->tx_queue[skb_queue_mapping], skb);
3640 if (!wl->tx_queue_stopped[skb_queue_mapping])
3641 ieee80211_queue_work(wl->hw, &wl->tx_work);
3642 else
3643 b43_stop_queue(wl->current_dev, skb_queue_mapping);
3644}
3645
3646static void b43_qos_params_upload(struct b43_wldev *dev,
3647 const struct ieee80211_tx_queue_params *p,
3648 u16 shm_offset)
3649{
3650 u16 params[B43_NR_QOSPARAMS];
3651 int bslots, tmp;
3652 unsigned int i;
3653
3654 if (!dev->qos_enabled)
3655 return;
3656
3657 bslots = b43_read16(dev, B43_MMIO_RNG) & p->cw_min;
3658
3659 memset(&params, 0, sizeof(params));
3660
3661 params[B43_QOSPARAM_TXOP] = p->txop * 32;
3662 params[B43_QOSPARAM_CWMIN] = p->cw_min;
3663 params[B43_QOSPARAM_CWMAX] = p->cw_max;
3664 params[B43_QOSPARAM_CWCUR] = p->cw_min;
3665 params[B43_QOSPARAM_AIFS] = p->aifs;
3666 params[B43_QOSPARAM_BSLOTS] = bslots;
3667 params[B43_QOSPARAM_REGGAP] = bslots + p->aifs;
3668
3669 for (i = 0; i < ARRAY_SIZE(params); i++) {
3670 if (i == B43_QOSPARAM_STATUS) {
3671 tmp = b43_shm_read16(dev, B43_SHM_SHARED,
3672 shm_offset + (i * 2));
3673 /* Mark the parameters as updated. */
3674 tmp |= 0x100;
3675 b43_shm_write16(dev, B43_SHM_SHARED,
3676 shm_offset + (i * 2),
3677 tmp);
3678 } else {
3679 b43_shm_write16(dev, B43_SHM_SHARED,
3680 shm_offset + (i * 2),
3681 params[i]);
3682 }
3683 }
3684}
3685
3686/* Mapping of mac80211 queue numbers to b43 QoS SHM offsets. */
3687static const u16 b43_qos_shm_offsets[] = {
3688 /* [mac80211-queue-nr] = SHM_OFFSET, */
3689 [0] = B43_QOS_VOICE,
3690 [1] = B43_QOS_VIDEO,
3691 [2] = B43_QOS_BESTEFFORT,
3692 [3] = B43_QOS_BACKGROUND,
3693};
3694
3695/* Update all QOS parameters in hardware. */
3696static void b43_qos_upload_all(struct b43_wldev *dev)
3697{
3698 struct b43_wl *wl = dev->wl;
3699 struct b43_qos_params *params;
3700 unsigned int i;
3701
3702 if (!dev->qos_enabled)
3703 return;
3704
3705 BUILD_BUG_ON(ARRAY_SIZE(b43_qos_shm_offsets) !=
3706 ARRAY_SIZE(wl->qos_params));
3707
3708 b43_mac_suspend(dev);
3709 for (i = 0; i < ARRAY_SIZE(wl->qos_params); i++) {
3710 params = &(wl->qos_params[i]);
3711 b43_qos_params_upload(dev, &(params->p),
3712 b43_qos_shm_offsets[i]);
3713 }
3714 b43_mac_enable(dev);
3715}
3716
3717static void b43_qos_clear(struct b43_wl *wl)
3718{
3719 struct b43_qos_params *params;
3720 unsigned int i;
3721
3722 /* Initialize QoS parameters to sane defaults. */
3723
3724 BUILD_BUG_ON(ARRAY_SIZE(b43_qos_shm_offsets) !=
3725 ARRAY_SIZE(wl->qos_params));
3726
3727 for (i = 0; i < ARRAY_SIZE(wl->qos_params); i++) {
3728 params = &(wl->qos_params[i]);
3729
3730 switch (b43_qos_shm_offsets[i]) {
3731 case B43_QOS_VOICE:
3732 params->p.txop = 0;
3733 params->p.aifs = 2;
3734 params->p.cw_min = 0x0001;
3735 params->p.cw_max = 0x0001;
3736 break;
3737 case B43_QOS_VIDEO:
3738 params->p.txop = 0;
3739 params->p.aifs = 2;
3740 params->p.cw_min = 0x0001;
3741 params->p.cw_max = 0x0001;
3742 break;
3743 case B43_QOS_BESTEFFORT:
3744 params->p.txop = 0;
3745 params->p.aifs = 3;
3746 params->p.cw_min = 0x0001;
3747 params->p.cw_max = 0x03FF;
3748 break;
3749 case B43_QOS_BACKGROUND:
3750 params->p.txop = 0;
3751 params->p.aifs = 7;
3752 params->p.cw_min = 0x0001;
3753 params->p.cw_max = 0x03FF;
3754 break;
3755 default:
3756 B43_WARN_ON(1);
3757 }
3758 }
3759}
3760
3761/* Initialize the core's QOS capabilities */
3762static void b43_qos_init(struct b43_wldev *dev)
3763{
3764 if (!dev->qos_enabled) {
3765 /* Disable QOS support. */
3766 b43_hf_write(dev, b43_hf_read(dev) & ~B43_HF_EDCF);
3767 b43_write16(dev, B43_MMIO_IFSCTL,
3768 b43_read16(dev, B43_MMIO_IFSCTL)
3769 & ~B43_MMIO_IFSCTL_USE_EDCF);
3770 b43dbg(dev->wl, "QoS disabled\n");
3771 return;
3772 }
3773
3774 /* Upload the current QOS parameters. */
3775 b43_qos_upload_all(dev);
3776
3777 /* Enable QOS support. */
3778 b43_hf_write(dev, b43_hf_read(dev) | B43_HF_EDCF);
3779 b43_write16(dev, B43_MMIO_IFSCTL,
3780 b43_read16(dev, B43_MMIO_IFSCTL)
3781 | B43_MMIO_IFSCTL_USE_EDCF);
3782 b43dbg(dev->wl, "QoS enabled\n");
3783}
3784
3785static int b43_op_conf_tx(struct ieee80211_hw *hw,
3786 struct ieee80211_vif *vif, u16 _queue,
3787 const struct ieee80211_tx_queue_params *params)
3788{
3789 struct b43_wl *wl = hw_to_b43_wl(hw);
3790 struct b43_wldev *dev;
3791 unsigned int queue = (unsigned int)_queue;
3792 int err = -ENODEV;
3793
3794 if (queue >= ARRAY_SIZE(wl->qos_params)) {
3795 /* Queue not available or don't support setting
3796 * params on this queue. Return success to not
3797 * confuse mac80211. */
3798 return 0;
3799 }
3800 BUILD_BUG_ON(ARRAY_SIZE(b43_qos_shm_offsets) !=
3801 ARRAY_SIZE(wl->qos_params));
3802
3803 mutex_lock(&wl->mutex);
3804 dev = wl->current_dev;
3805 if (unlikely(!dev || (b43_status(dev) < B43_STAT_INITIALIZED)))
3806 goto out_unlock;
3807
3808 memcpy(&(wl->qos_params[queue].p), params, sizeof(*params));
3809 b43_mac_suspend(dev);
3810 b43_qos_params_upload(dev, &(wl->qos_params[queue].p),
3811 b43_qos_shm_offsets[queue]);
3812 b43_mac_enable(dev);
3813 err = 0;
3814
3815out_unlock:
3816 mutex_unlock(&wl->mutex);
3817
3818 return err;
3819}
3820
3821static int b43_op_get_stats(struct ieee80211_hw *hw,
3822 struct ieee80211_low_level_stats *stats)
3823{
3824 struct b43_wl *wl = hw_to_b43_wl(hw);
3825
3826 mutex_lock(&wl->mutex);
3827 memcpy(stats, &wl->ieee_stats, sizeof(*stats));
3828 mutex_unlock(&wl->mutex);
3829
3830 return 0;
3831}
3832
3833static u64 b43_op_get_tsf(struct ieee80211_hw *hw, struct ieee80211_vif *vif)
3834{
3835 struct b43_wl *wl = hw_to_b43_wl(hw);
3836 struct b43_wldev *dev;
3837 u64 tsf;
3838
3839 mutex_lock(&wl->mutex);
3840 dev = wl->current_dev;
3841
3842 if (dev && (b43_status(dev) >= B43_STAT_INITIALIZED))
3843 b43_tsf_read(dev, &tsf);
3844 else
3845 tsf = 0;
3846
3847 mutex_unlock(&wl->mutex);
3848
3849 return tsf;
3850}
3851
3852static void b43_op_set_tsf(struct ieee80211_hw *hw,
3853 struct ieee80211_vif *vif, u64 tsf)
3854{
3855 struct b43_wl *wl = hw_to_b43_wl(hw);
3856 struct b43_wldev *dev;
3857
3858 mutex_lock(&wl->mutex);
3859 dev = wl->current_dev;
3860
3861 if (dev && (b43_status(dev) >= B43_STAT_INITIALIZED))
3862 b43_tsf_write(dev, tsf);
3863
3864 mutex_unlock(&wl->mutex);
3865}
3866
3867static const char *band_to_string(enum nl80211_band band)
3868{
3869 switch (band) {
3870 case NL80211_BAND_5GHZ:
3871 return "5";
3872 case NL80211_BAND_2GHZ:
3873 return "2.4";
3874 default:
3875 break;
3876 }
3877 B43_WARN_ON(1);
3878 return "";
3879}
3880
3881/* Expects wl->mutex locked */
3882static int b43_switch_band(struct b43_wldev *dev,
3883 struct ieee80211_channel *chan)
3884{
3885 struct b43_phy *phy = &dev->phy;
3886 bool gmode;
3887 u32 tmp;
3888
3889 switch (chan->band) {
3890 case NL80211_BAND_5GHZ:
3891 gmode = false;
3892 break;
3893 case NL80211_BAND_2GHZ:
3894 gmode = true;
3895 break;
3896 default:
3897 B43_WARN_ON(1);
3898 return -EINVAL;
3899 }
3900
3901 if (!((gmode && phy->supports_2ghz) ||
3902 (!gmode && phy->supports_5ghz))) {
3903 b43err(dev->wl, "This device doesn't support %s-GHz band\n",
3904 band_to_string(chan->band));
3905 return -ENODEV;
3906 }
3907
3908 if (!!phy->gmode == !!gmode) {
3909 /* This device is already running. */
3910 return 0;
3911 }
3912
3913 b43dbg(dev->wl, "Switching to %s GHz band\n",
3914 band_to_string(chan->band));
3915
3916 /* Some new devices don't need disabling radio for band switching */
3917 if (!(phy->type == B43_PHYTYPE_N && phy->rev >= 3))
3918 b43_software_rfkill(dev, true);
3919
3920 phy->gmode = gmode;
3921 b43_phy_put_into_reset(dev);
3922 switch (dev->dev->bus_type) {
3923#ifdef CONFIG_B43_BCMA
3924 case B43_BUS_BCMA:
3925 tmp = bcma_aread32(dev->dev->bdev, BCMA_IOCTL);
3926 if (gmode)
3927 tmp |= B43_BCMA_IOCTL_GMODE;
3928 else
3929 tmp &= ~B43_BCMA_IOCTL_GMODE;
3930 bcma_awrite32(dev->dev->bdev, BCMA_IOCTL, tmp);
3931 break;
3932#endif
3933#ifdef CONFIG_B43_SSB
3934 case B43_BUS_SSB:
3935 tmp = ssb_read32(dev->dev->sdev, SSB_TMSLOW);
3936 if (gmode)
3937 tmp |= B43_TMSLOW_GMODE;
3938 else
3939 tmp &= ~B43_TMSLOW_GMODE;
3940 ssb_write32(dev->dev->sdev, SSB_TMSLOW, tmp);
3941 break;
3942#endif
3943 }
3944 b43_phy_take_out_of_reset(dev);
3945
3946 b43_upload_initvals_band(dev);
3947
3948 b43_phy_init(dev);
3949
3950 return 0;
3951}
3952
3953static void b43_set_beacon_listen_interval(struct b43_wldev *dev, u16 interval)
3954{
3955 interval = min_t(u16, interval, (u16)0xFF);
3956 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_BCN_LI, interval);
3957}
3958
3959/* Write the short and long frame retry limit values. */
3960static void b43_set_retry_limits(struct b43_wldev *dev,
3961 unsigned int short_retry,
3962 unsigned int long_retry)
3963{
3964 /* The retry limit is a 4-bit counter. Enforce this to avoid overflowing
3965 * the chip-internal counter. */
3966 short_retry = min(short_retry, (unsigned int)0xF);
3967 long_retry = min(long_retry, (unsigned int)0xF);
3968
3969 b43_shm_write16(dev, B43_SHM_SCRATCH, B43_SHM_SC_SRLIMIT,
3970 short_retry);
3971 b43_shm_write16(dev, B43_SHM_SCRATCH, B43_SHM_SC_LRLIMIT,
3972 long_retry);
3973}
3974
3975static int b43_op_config(struct ieee80211_hw *hw, u32 changed)
3976{
3977 struct b43_wl *wl = hw_to_b43_wl(hw);
3978 struct b43_wldev *dev = wl->current_dev;
3979 struct b43_phy *phy = &dev->phy;
3980 struct ieee80211_conf *conf = &hw->conf;
3981 int antenna;
3982 int err = 0;
3983
3984 mutex_lock(&wl->mutex);
3985 b43_mac_suspend(dev);
3986
3987 if (changed & IEEE80211_CONF_CHANGE_LISTEN_INTERVAL)
3988 b43_set_beacon_listen_interval(dev, conf->listen_interval);
3989
3990 if (changed & IEEE80211_CONF_CHANGE_CHANNEL) {
3991 phy->chandef = &conf->chandef;
3992 phy->channel = conf->chandef.chan->hw_value;
3993
3994 /* Switch the band (if necessary). */
3995 err = b43_switch_band(dev, conf->chandef.chan);
3996 if (err)
3997 goto out_mac_enable;
3998
3999 /* Switch to the requested channel.
4000 * The firmware takes care of races with the TX handler.
4001 */
4002 b43_switch_channel(dev, phy->channel);
4003 }
4004
4005 if (changed & IEEE80211_CONF_CHANGE_RETRY_LIMITS)
4006 b43_set_retry_limits(dev, conf->short_frame_max_tx_count,
4007 conf->long_frame_max_tx_count);
4008 changed &= ~IEEE80211_CONF_CHANGE_RETRY_LIMITS;
4009 if (!changed)
4010 goto out_mac_enable;
4011
4012 dev->wl->radiotap_enabled = !!(conf->flags & IEEE80211_CONF_MONITOR);
4013
4014 /* Adjust the desired TX power level. */
4015 if (conf->power_level != 0) {
4016 if (conf->power_level != phy->desired_txpower) {
4017 phy->desired_txpower = conf->power_level;
4018 b43_phy_txpower_check(dev, B43_TXPWR_IGNORE_TIME |
4019 B43_TXPWR_IGNORE_TSSI);
4020 }
4021 }
4022
4023 /* Antennas for RX and management frame TX. */
4024 antenna = B43_ANTENNA_DEFAULT;
4025 b43_mgmtframe_txantenna(dev, antenna);
4026 antenna = B43_ANTENNA_DEFAULT;
4027 if (phy->ops->set_rx_antenna)
4028 phy->ops->set_rx_antenna(dev, antenna);
4029
4030 if (wl->radio_enabled != phy->radio_on) {
4031 if (wl->radio_enabled) {
4032 b43_software_rfkill(dev, false);
4033 b43info(dev->wl, "Radio turned on by software\n");
4034 if (!dev->radio_hw_enable) {
4035 b43info(dev->wl, "The hardware RF-kill button "
4036 "still turns the radio physically off. "
4037 "Press the button to turn it on.\n");
4038 }
4039 } else {
4040 b43_software_rfkill(dev, true);
4041 b43info(dev->wl, "Radio turned off by software\n");
4042 }
4043 }
4044
4045out_mac_enable:
4046 b43_mac_enable(dev);
4047 mutex_unlock(&wl->mutex);
4048
4049 return err;
4050}
4051
4052static void b43_update_basic_rates(struct b43_wldev *dev, u32 brates)
4053{
4054 struct ieee80211_supported_band *sband =
4055 dev->wl->hw->wiphy->bands[b43_current_band(dev->wl)];
4056 struct ieee80211_rate *rate;
4057 int i;
4058 u16 basic, direct, offset, basic_offset, rateptr;
4059
4060 for (i = 0; i < sband->n_bitrates; i++) {
4061 rate = &sband->bitrates[i];
4062
4063 if (b43_is_cck_rate(rate->hw_value)) {
4064 direct = B43_SHM_SH_CCKDIRECT;
4065 basic = B43_SHM_SH_CCKBASIC;
4066 offset = b43_plcp_get_ratecode_cck(rate->hw_value);
4067 offset &= 0xF;
4068 } else {
4069 direct = B43_SHM_SH_OFDMDIRECT;
4070 basic = B43_SHM_SH_OFDMBASIC;
4071 offset = b43_plcp_get_ratecode_ofdm(rate->hw_value);
4072 offset &= 0xF;
4073 }
4074
4075 rate = ieee80211_get_response_rate(sband, brates, rate->bitrate);
4076
4077 if (b43_is_cck_rate(rate->hw_value)) {
4078 basic_offset = b43_plcp_get_ratecode_cck(rate->hw_value);
4079 basic_offset &= 0xF;
4080 } else {
4081 basic_offset = b43_plcp_get_ratecode_ofdm(rate->hw_value);
4082 basic_offset &= 0xF;
4083 }
4084
4085 /*
4086 * Get the pointer that we need to point to
4087 * from the direct map
4088 */
4089 rateptr = b43_shm_read16(dev, B43_SHM_SHARED,
4090 direct + 2 * basic_offset);
4091 /* and write it to the basic map */
4092 b43_shm_write16(dev, B43_SHM_SHARED, basic + 2 * offset,
4093 rateptr);
4094 }
4095}
4096
4097static void b43_op_bss_info_changed(struct ieee80211_hw *hw,
4098 struct ieee80211_vif *vif,
4099 struct ieee80211_bss_conf *conf,
4100 u32 changed)
4101{
4102 struct b43_wl *wl = hw_to_b43_wl(hw);
4103 struct b43_wldev *dev;
4104
4105 mutex_lock(&wl->mutex);
4106
4107 dev = wl->current_dev;
4108 if (!dev || b43_status(dev) < B43_STAT_STARTED)
4109 goto out_unlock_mutex;
4110
4111 B43_WARN_ON(wl->vif != vif);
4112
4113 if (changed & BSS_CHANGED_BSSID) {
4114 if (conf->bssid)
4115 memcpy(wl->bssid, conf->bssid, ETH_ALEN);
4116 else
4117 eth_zero_addr(wl->bssid);
4118 }
4119
4120 if (b43_status(dev) >= B43_STAT_INITIALIZED) {
4121 if (changed & BSS_CHANGED_BEACON &&
4122 (b43_is_mode(wl, NL80211_IFTYPE_AP) ||
4123 b43_is_mode(wl, NL80211_IFTYPE_MESH_POINT) ||
4124 b43_is_mode(wl, NL80211_IFTYPE_ADHOC)))
4125 b43_update_templates(wl);
4126
4127 if (changed & BSS_CHANGED_BSSID)
4128 b43_write_mac_bssid_templates(dev);
4129 }
4130
4131 b43_mac_suspend(dev);
4132
4133 /* Update templates for AP/mesh mode. */
4134 if (changed & BSS_CHANGED_BEACON_INT &&
4135 (b43_is_mode(wl, NL80211_IFTYPE_AP) ||
4136 b43_is_mode(wl, NL80211_IFTYPE_MESH_POINT) ||
4137 b43_is_mode(wl, NL80211_IFTYPE_ADHOC)) &&
4138 conf->beacon_int)
4139 b43_set_beacon_int(dev, conf->beacon_int);
4140
4141 if (changed & BSS_CHANGED_BASIC_RATES)
4142 b43_update_basic_rates(dev, conf->basic_rates);
4143
4144 if (changed & BSS_CHANGED_ERP_SLOT) {
4145 if (conf->use_short_slot)
4146 b43_short_slot_timing_enable(dev);
4147 else
4148 b43_short_slot_timing_disable(dev);
4149 }
4150
4151 b43_mac_enable(dev);
4152out_unlock_mutex:
4153 mutex_unlock(&wl->mutex);
4154}
4155
4156static int b43_op_set_key(struct ieee80211_hw *hw, enum set_key_cmd cmd,
4157 struct ieee80211_vif *vif, struct ieee80211_sta *sta,
4158 struct ieee80211_key_conf *key)
4159{
4160 struct b43_wl *wl = hw_to_b43_wl(hw);
4161 struct b43_wldev *dev;
4162 u8 algorithm;
4163 u8 index;
4164 int err;
4165 static const u8 bcast_addr[ETH_ALEN] = { 0xff, 0xff, 0xff, 0xff, 0xff, 0xff };
4166
4167 if (modparam_nohwcrypt)
4168 return -ENOSPC; /* User disabled HW-crypto */
4169
4170 if ((vif->type == NL80211_IFTYPE_ADHOC ||
4171 vif->type == NL80211_IFTYPE_MESH_POINT) &&
4172 (key->cipher == WLAN_CIPHER_SUITE_TKIP ||
4173 key->cipher == WLAN_CIPHER_SUITE_CCMP) &&
4174 !(key->flags & IEEE80211_KEY_FLAG_PAIRWISE)) {
4175 /*
4176 * For now, disable hw crypto for the RSN IBSS group keys. This
4177 * could be optimized in the future, but until that gets
4178 * implemented, use of software crypto for group addressed
4179 * frames is a acceptable to allow RSN IBSS to be used.
4180 */
4181 return -EOPNOTSUPP;
4182 }
4183
4184 mutex_lock(&wl->mutex);
4185
4186 dev = wl->current_dev;
4187 err = -ENODEV;
4188 if (!dev || b43_status(dev) < B43_STAT_INITIALIZED)
4189 goto out_unlock;
4190
4191 if (dev->fw.pcm_request_failed || !dev->hwcrypto_enabled) {
4192 /* We don't have firmware for the crypto engine.
4193 * Must use software-crypto. */
4194 err = -EOPNOTSUPP;
4195 goto out_unlock;
4196 }
4197
4198 err = -EINVAL;
4199 switch (key->cipher) {
4200 case WLAN_CIPHER_SUITE_WEP40:
4201 algorithm = B43_SEC_ALGO_WEP40;
4202 break;
4203 case WLAN_CIPHER_SUITE_WEP104:
4204 algorithm = B43_SEC_ALGO_WEP104;
4205 break;
4206 case WLAN_CIPHER_SUITE_TKIP:
4207 algorithm = B43_SEC_ALGO_TKIP;
4208 break;
4209 case WLAN_CIPHER_SUITE_CCMP:
4210 algorithm = B43_SEC_ALGO_AES;
4211 break;
4212 default:
4213 B43_WARN_ON(1);
4214 goto out_unlock;
4215 }
4216 index = (u8) (key->keyidx);
4217 if (index > 3)
4218 goto out_unlock;
4219
4220 switch (cmd) {
4221 case SET_KEY:
4222 if (algorithm == B43_SEC_ALGO_TKIP &&
4223 (!(key->flags & IEEE80211_KEY_FLAG_PAIRWISE) ||
4224 !modparam_hwtkip)) {
4225 /* We support only pairwise key */
4226 err = -EOPNOTSUPP;
4227 goto out_unlock;
4228 }
4229
4230 if (key->flags & IEEE80211_KEY_FLAG_PAIRWISE) {
4231 if (WARN_ON(!sta)) {
4232 err = -EOPNOTSUPP;
4233 goto out_unlock;
4234 }
4235 /* Pairwise key with an assigned MAC address. */
4236 err = b43_key_write(dev, -1, algorithm,
4237 key->key, key->keylen,
4238 sta->addr, key);
4239 } else {
4240 /* Group key */
4241 err = b43_key_write(dev, index, algorithm,
4242 key->key, key->keylen, NULL, key);
4243 }
4244 if (err)
4245 goto out_unlock;
4246
4247 if (algorithm == B43_SEC_ALGO_WEP40 ||
4248 algorithm == B43_SEC_ALGO_WEP104) {
4249 b43_hf_write(dev, b43_hf_read(dev) | B43_HF_USEDEFKEYS);
4250 } else {
4251 b43_hf_write(dev,
4252 b43_hf_read(dev) & ~B43_HF_USEDEFKEYS);
4253 }
4254 key->flags |= IEEE80211_KEY_FLAG_GENERATE_IV;
4255 if (algorithm == B43_SEC_ALGO_TKIP)
4256 key->flags |= IEEE80211_KEY_FLAG_GENERATE_MMIC;
4257 break;
4258 case DISABLE_KEY: {
4259 err = b43_key_clear(dev, key->hw_key_idx);
4260 if (err)
4261 goto out_unlock;
4262 break;
4263 }
4264 default:
4265 B43_WARN_ON(1);
4266 }
4267
4268out_unlock:
4269 if (!err) {
4270 b43dbg(wl, "%s hardware based encryption for keyidx: %d, "
4271 "mac: %pM\n",
4272 cmd == SET_KEY ? "Using" : "Disabling", key->keyidx,
4273 sta ? sta->addr : bcast_addr);
4274 b43_dump_keymemory(dev);
4275 }
4276 mutex_unlock(&wl->mutex);
4277
4278 return err;
4279}
4280
4281static void b43_op_configure_filter(struct ieee80211_hw *hw,
4282 unsigned int changed, unsigned int *fflags,
4283 u64 multicast)
4284{
4285 struct b43_wl *wl = hw_to_b43_wl(hw);
4286 struct b43_wldev *dev;
4287
4288 mutex_lock(&wl->mutex);
4289 dev = wl->current_dev;
4290 if (!dev) {
4291 *fflags = 0;
4292 goto out_unlock;
4293 }
4294
4295 *fflags &= FIF_ALLMULTI |
4296 FIF_FCSFAIL |
4297 FIF_PLCPFAIL |
4298 FIF_CONTROL |
4299 FIF_OTHER_BSS |
4300 FIF_BCN_PRBRESP_PROMISC;
4301
4302 changed &= FIF_ALLMULTI |
4303 FIF_FCSFAIL |
4304 FIF_PLCPFAIL |
4305 FIF_CONTROL |
4306 FIF_OTHER_BSS |
4307 FIF_BCN_PRBRESP_PROMISC;
4308
4309 wl->filter_flags = *fflags;
4310
4311 if (changed && b43_status(dev) >= B43_STAT_INITIALIZED)
4312 b43_adjust_opmode(dev);
4313
4314out_unlock:
4315 mutex_unlock(&wl->mutex);
4316}
4317
4318/* Locking: wl->mutex
4319 * Returns the current dev. This might be different from the passed in dev,
4320 * because the core might be gone away while we unlocked the mutex. */
4321static struct b43_wldev * b43_wireless_core_stop(struct b43_wldev *dev)
4322{
4323 struct b43_wl *wl;
4324 struct b43_wldev *orig_dev;
4325 u32 mask;
4326 int queue_num;
4327
4328 if (!dev)
4329 return NULL;
4330 wl = dev->wl;
4331redo:
4332 if (!dev || b43_status(dev) < B43_STAT_STARTED)
4333 return dev;
4334
4335 /* Cancel work. Unlock to avoid deadlocks. */
4336 mutex_unlock(&wl->mutex);
4337 cancel_delayed_work_sync(&dev->periodic_work);
4338 cancel_work_sync(&wl->tx_work);
4339 b43_leds_stop(dev);
4340 mutex_lock(&wl->mutex);
4341 dev = wl->current_dev;
4342 if (!dev || b43_status(dev) < B43_STAT_STARTED) {
4343 /* Whoops, aliens ate up the device while we were unlocked. */
4344 return dev;
4345 }
4346
4347 /* Disable interrupts on the device. */
4348 b43_set_status(dev, B43_STAT_INITIALIZED);
4349 if (b43_bus_host_is_sdio(dev->dev)) {
4350 /* wl->mutex is locked. That is enough. */
4351 b43_write32(dev, B43_MMIO_GEN_IRQ_MASK, 0);
4352 b43_read32(dev, B43_MMIO_GEN_IRQ_MASK); /* Flush */
4353 } else {
4354 spin_lock_irq(&wl->hardirq_lock);
4355 b43_write32(dev, B43_MMIO_GEN_IRQ_MASK, 0);
4356 b43_read32(dev, B43_MMIO_GEN_IRQ_MASK); /* Flush */
4357 spin_unlock_irq(&wl->hardirq_lock);
4358 }
4359 /* Synchronize and free the interrupt handlers. Unlock to avoid deadlocks. */
4360 orig_dev = dev;
4361 mutex_unlock(&wl->mutex);
4362 if (b43_bus_host_is_sdio(dev->dev))
4363 b43_sdio_free_irq(dev);
4364 else
4365 free_irq(dev->dev->irq, dev);
4366 mutex_lock(&wl->mutex);
4367 dev = wl->current_dev;
4368 if (!dev)
4369 return dev;
4370 if (dev != orig_dev) {
4371 if (b43_status(dev) >= B43_STAT_STARTED)
4372 goto redo;
4373 return dev;
4374 }
4375 mask = b43_read32(dev, B43_MMIO_GEN_IRQ_MASK);
4376 B43_WARN_ON(mask != 0xFFFFFFFF && mask);
4377
4378 /* Drain all TX queues. */
4379 for (queue_num = 0; queue_num < B43_QOS_QUEUE_NUM; queue_num++) {
4380 while (skb_queue_len(&wl->tx_queue[queue_num])) {
4381 struct sk_buff *skb;
4382
4383 skb = skb_dequeue(&wl->tx_queue[queue_num]);
4384 ieee80211_free_txskb(wl->hw, skb);
4385 }
4386 }
4387
4388 b43_mac_suspend(dev);
4389 b43_leds_exit(dev);
4390 b43dbg(wl, "Wireless interface stopped\n");
4391
4392 return dev;
4393}
4394
4395/* Locking: wl->mutex */
4396static int b43_wireless_core_start(struct b43_wldev *dev)
4397{
4398 int err;
4399
4400 B43_WARN_ON(b43_status(dev) != B43_STAT_INITIALIZED);
4401
4402 drain_txstatus_queue(dev);
4403 if (b43_bus_host_is_sdio(dev->dev)) {
4404 err = b43_sdio_request_irq(dev, b43_sdio_interrupt_handler);
4405 if (err) {
4406 b43err(dev->wl, "Cannot request SDIO IRQ\n");
4407 goto out;
4408 }
4409 } else {
4410 err = request_threaded_irq(dev->dev->irq, b43_interrupt_handler,
4411 b43_interrupt_thread_handler,
4412 IRQF_SHARED, KBUILD_MODNAME, dev);
4413 if (err) {
4414 b43err(dev->wl, "Cannot request IRQ-%d\n",
4415 dev->dev->irq);
4416 goto out;
4417 }
4418 }
4419
4420 /* We are ready to run. */
4421 ieee80211_wake_queues(dev->wl->hw);
4422 b43_set_status(dev, B43_STAT_STARTED);
4423
4424 /* Start data flow (TX/RX). */
4425 b43_mac_enable(dev);
4426 b43_write32(dev, B43_MMIO_GEN_IRQ_MASK, dev->irq_mask);
4427
4428 /* Start maintenance work */
4429 b43_periodic_tasks_setup(dev);
4430
4431 b43_leds_init(dev);
4432
4433 b43dbg(dev->wl, "Wireless interface started\n");
4434out:
4435 return err;
4436}
4437
4438static char *b43_phy_name(struct b43_wldev *dev, u8 phy_type)
4439{
4440 switch (phy_type) {
4441 case B43_PHYTYPE_A:
4442 return "A";
4443 case B43_PHYTYPE_B:
4444 return "B";
4445 case B43_PHYTYPE_G:
4446 return "G";
4447 case B43_PHYTYPE_N:
4448 return "N";
4449 case B43_PHYTYPE_LP:
4450 return "LP";
4451 case B43_PHYTYPE_SSLPN:
4452 return "SSLPN";
4453 case B43_PHYTYPE_HT:
4454 return "HT";
4455 case B43_PHYTYPE_LCN:
4456 return "LCN";
4457 case B43_PHYTYPE_LCNXN:
4458 return "LCNXN";
4459 case B43_PHYTYPE_LCN40:
4460 return "LCN40";
4461 case B43_PHYTYPE_AC:
4462 return "AC";
4463 }
4464 return "UNKNOWN";
4465}
4466
4467/* Get PHY and RADIO versioning numbers */
4468static int b43_phy_versioning(struct b43_wldev *dev)
4469{
4470 struct b43_phy *phy = &dev->phy;
4471 const u8 core_rev = dev->dev->core_rev;
4472 u32 tmp;
4473 u8 analog_type;
4474 u8 phy_type;
4475 u8 phy_rev;
4476 u16 radio_manuf;
4477 u16 radio_id;
4478 u16 radio_rev;
4479 u8 radio_ver;
4480 int unsupported = 0;
4481
4482 /* Get PHY versioning */
4483 tmp = b43_read16(dev, B43_MMIO_PHY_VER);
4484 analog_type = (tmp & B43_PHYVER_ANALOG) >> B43_PHYVER_ANALOG_SHIFT;
4485 phy_type = (tmp & B43_PHYVER_TYPE) >> B43_PHYVER_TYPE_SHIFT;
4486 phy_rev = (tmp & B43_PHYVER_VERSION);
4487
4488 /* LCNXN is continuation of N which run out of revisions */
4489 if (phy_type == B43_PHYTYPE_LCNXN) {
4490 phy_type = B43_PHYTYPE_N;
4491 phy_rev += 16;
4492 }
4493
4494 switch (phy_type) {
4495#ifdef CONFIG_B43_PHY_G
4496 case B43_PHYTYPE_G:
4497 if (phy_rev > 9)
4498 unsupported = 1;
4499 break;
4500#endif
4501#ifdef CONFIG_B43_PHY_N
4502 case B43_PHYTYPE_N:
4503 if (phy_rev >= 19)
4504 unsupported = 1;
4505 break;
4506#endif
4507#ifdef CONFIG_B43_PHY_LP
4508 case B43_PHYTYPE_LP:
4509 if (phy_rev > 2)
4510 unsupported = 1;
4511 break;
4512#endif
4513#ifdef CONFIG_B43_PHY_HT
4514 case B43_PHYTYPE_HT:
4515 if (phy_rev > 1)
4516 unsupported = 1;
4517 break;
4518#endif
4519#ifdef CONFIG_B43_PHY_LCN
4520 case B43_PHYTYPE_LCN:
4521 if (phy_rev > 1)
4522 unsupported = 1;
4523 break;
4524#endif
4525#ifdef CONFIG_B43_PHY_AC
4526 case B43_PHYTYPE_AC:
4527 if (phy_rev > 1)
4528 unsupported = 1;
4529 break;
4530#endif
4531 default:
4532 unsupported = 1;
4533 }
4534 if (unsupported) {
4535 b43err(dev->wl, "FOUND UNSUPPORTED PHY (Analog %u, Type %d (%s), Revision %u)\n",
4536 analog_type, phy_type, b43_phy_name(dev, phy_type),
4537 phy_rev);
4538 return -EOPNOTSUPP;
4539 }
4540 b43info(dev->wl, "Found PHY: Analog %u, Type %d (%s), Revision %u\n",
4541 analog_type, phy_type, b43_phy_name(dev, phy_type), phy_rev);
4542
4543 /* Get RADIO versioning */
4544 if (core_rev == 40 || core_rev == 42) {
4545 radio_manuf = 0x17F;
4546
4547 b43_write16f(dev, B43_MMIO_RADIO24_CONTROL, 0);
4548 radio_rev = b43_read16(dev, B43_MMIO_RADIO24_DATA);
4549
4550 b43_write16f(dev, B43_MMIO_RADIO24_CONTROL, 1);
4551 radio_id = b43_read16(dev, B43_MMIO_RADIO24_DATA);
4552
4553 radio_ver = 0; /* Is there version somewhere? */
4554 } else if (core_rev >= 24) {
4555 u16 radio24[3];
4556
4557 for (tmp = 0; tmp < 3; tmp++) {
4558 b43_write16f(dev, B43_MMIO_RADIO24_CONTROL, tmp);
4559 radio24[tmp] = b43_read16(dev, B43_MMIO_RADIO24_DATA);
4560 }
4561
4562 radio_manuf = 0x17F;
4563 radio_id = (radio24[2] << 8) | radio24[1];
4564 radio_rev = (radio24[0] & 0xF);
4565 radio_ver = (radio24[0] & 0xF0) >> 4;
4566 } else {
4567 if (dev->dev->chip_id == 0x4317) {
4568 if (dev->dev->chip_rev == 0)
4569 tmp = 0x3205017F;
4570 else if (dev->dev->chip_rev == 1)
4571 tmp = 0x4205017F;
4572 else
4573 tmp = 0x5205017F;
4574 } else {
4575 b43_write16f(dev, B43_MMIO_RADIO_CONTROL,
4576 B43_RADIOCTL_ID);
4577 tmp = b43_read16(dev, B43_MMIO_RADIO_DATA_LOW);
4578 b43_write16f(dev, B43_MMIO_RADIO_CONTROL,
4579 B43_RADIOCTL_ID);
4580 tmp |= b43_read16(dev, B43_MMIO_RADIO_DATA_HIGH) << 16;
4581 }
4582 radio_manuf = (tmp & 0x00000FFF);
4583 radio_id = (tmp & 0x0FFFF000) >> 12;
4584 radio_rev = (tmp & 0xF0000000) >> 28;
4585 radio_ver = 0; /* Probably not available on old hw */
4586 }
4587
4588 if (radio_manuf != 0x17F /* Broadcom */)
4589 unsupported = 1;
4590 switch (phy_type) {
4591 case B43_PHYTYPE_B:
4592 if ((radio_id & 0xFFF0) != 0x2050)
4593 unsupported = 1;
4594 break;
4595 case B43_PHYTYPE_G:
4596 if (radio_id != 0x2050)
4597 unsupported = 1;
4598 break;
4599 case B43_PHYTYPE_N:
4600 if (radio_id != 0x2055 && radio_id != 0x2056 &&
4601 radio_id != 0x2057)
4602 unsupported = 1;
4603 if (radio_id == 0x2057 &&
4604 !(radio_rev == 9 || radio_rev == 14))
4605 unsupported = 1;
4606 break;
4607 case B43_PHYTYPE_LP:
4608 if (radio_id != 0x2062 && radio_id != 0x2063)
4609 unsupported = 1;
4610 break;
4611 case B43_PHYTYPE_HT:
4612 if (radio_id != 0x2059)
4613 unsupported = 1;
4614 break;
4615 case B43_PHYTYPE_LCN:
4616 if (radio_id != 0x2064)
4617 unsupported = 1;
4618 break;
4619 case B43_PHYTYPE_AC:
4620 if (radio_id != 0x2069)
4621 unsupported = 1;
4622 break;
4623 default:
4624 B43_WARN_ON(1);
4625 }
4626 if (unsupported) {
4627 b43err(dev->wl,
4628 "FOUND UNSUPPORTED RADIO (Manuf 0x%X, ID 0x%X, Revision %u, Version %u)\n",
4629 radio_manuf, radio_id, radio_rev, radio_ver);
4630 return -EOPNOTSUPP;
4631 }
4632 b43info(dev->wl,
4633 "Found Radio: Manuf 0x%X, ID 0x%X, Revision %u, Version %u\n",
4634 radio_manuf, radio_id, radio_rev, radio_ver);
4635
4636 /* FIXME: b43 treats "id" as "ver" and ignores the real "ver" */
4637 phy->radio_manuf = radio_manuf;
4638 phy->radio_ver = radio_id;
4639 phy->radio_rev = radio_rev;
4640
4641 phy->analog = analog_type;
4642 phy->type = phy_type;
4643 phy->rev = phy_rev;
4644
4645 return 0;
4646}
4647
4648static void setup_struct_phy_for_init(struct b43_wldev *dev,
4649 struct b43_phy *phy)
4650{
4651 phy->hardware_power_control = !!modparam_hwpctl;
4652 phy->next_txpwr_check_time = jiffies;
4653 /* PHY TX errors counter. */
4654 atomic_set(&phy->txerr_cnt, B43_PHY_TX_BADNESS_LIMIT);
4655
4656#if B43_DEBUG
4657 phy->phy_locked = false;
4658 phy->radio_locked = false;
4659#endif
4660}
4661
4662static void setup_struct_wldev_for_init(struct b43_wldev *dev)
4663{
4664 dev->dfq_valid = false;
4665
4666 /* Assume the radio is enabled. If it's not enabled, the state will
4667 * immediately get fixed on the first periodic work run. */
4668 dev->radio_hw_enable = true;
4669
4670 /* Stats */
4671 memset(&dev->stats, 0, sizeof(dev->stats));
4672
4673 setup_struct_phy_for_init(dev, &dev->phy);
4674
4675 /* IRQ related flags */
4676 dev->irq_reason = 0;
4677 memset(dev->dma_reason, 0, sizeof(dev->dma_reason));
4678 dev->irq_mask = B43_IRQ_MASKTEMPLATE;
4679 if (b43_modparam_verbose < B43_VERBOSITY_DEBUG)
4680 dev->irq_mask &= ~B43_IRQ_PHY_TXERR;
4681
4682 dev->mac_suspended = 1;
4683
4684 /* Noise calculation context */
4685 memset(&dev->noisecalc, 0, sizeof(dev->noisecalc));
4686}
4687
4688static void b43_bluetooth_coext_enable(struct b43_wldev *dev)
4689{
4690 struct ssb_sprom *sprom = dev->dev->bus_sprom;
4691 u64 hf;
4692
4693 if (!modparam_btcoex)
4694 return;
4695 if (!(sprom->boardflags_lo & B43_BFL_BTCOEXIST))
4696 return;
4697 if (dev->phy.type != B43_PHYTYPE_B && !dev->phy.gmode)
4698 return;
4699
4700 hf = b43_hf_read(dev);
4701 if (sprom->boardflags_lo & B43_BFL_BTCMOD)
4702 hf |= B43_HF_BTCOEXALT;
4703 else
4704 hf |= B43_HF_BTCOEX;
4705 b43_hf_write(dev, hf);
4706}
4707
4708static void b43_bluetooth_coext_disable(struct b43_wldev *dev)
4709{
4710 if (!modparam_btcoex)
4711 return;
4712 //TODO
4713}
4714
4715static void b43_imcfglo_timeouts_workaround(struct b43_wldev *dev)
4716{
4717 struct ssb_bus *bus;
4718 u32 tmp;
4719
4720#ifdef CONFIG_B43_SSB
4721 if (dev->dev->bus_type != B43_BUS_SSB)
4722 return;
4723#else
4724 return;
4725#endif
4726
4727 bus = dev->dev->sdev->bus;
4728
4729 if ((bus->chip_id == 0x4311 && bus->chip_rev == 2) ||
4730 (bus->chip_id == 0x4312)) {
4731 tmp = ssb_read32(dev->dev->sdev, SSB_IMCFGLO);
4732 tmp &= ~SSB_IMCFGLO_REQTO;
4733 tmp &= ~SSB_IMCFGLO_SERTO;
4734 tmp |= 0x3;
4735 ssb_write32(dev->dev->sdev, SSB_IMCFGLO, tmp);
4736 ssb_commit_settings(bus);
4737 }
4738}
4739
4740static void b43_set_synth_pu_delay(struct b43_wldev *dev, bool idle)
4741{
4742 u16 pu_delay;
4743
4744 /* The time value is in microseconds. */
4745 pu_delay = 1050;
4746 if (b43_is_mode(dev->wl, NL80211_IFTYPE_ADHOC) || idle)
4747 pu_delay = 500;
4748 if ((dev->phy.radio_ver == 0x2050) && (dev->phy.radio_rev == 8))
4749 pu_delay = max(pu_delay, (u16)2400);
4750
4751 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_SPUWKUP, pu_delay);
4752}
4753
4754/* Set the TSF CFP pre-TargetBeaconTransmissionTime. */
4755static void b43_set_pretbtt(struct b43_wldev *dev)
4756{
4757 u16 pretbtt;
4758
4759 /* The time value is in microseconds. */
4760 if (b43_is_mode(dev->wl, NL80211_IFTYPE_ADHOC))
4761 pretbtt = 2;
4762 else
4763 pretbtt = 250;
4764 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PRETBTT, pretbtt);
4765 b43_write16(dev, B43_MMIO_TSF_CFP_PRETBTT, pretbtt);
4766}
4767
4768/* Shutdown a wireless core */
4769/* Locking: wl->mutex */
4770static void b43_wireless_core_exit(struct b43_wldev *dev)
4771{
4772 B43_WARN_ON(dev && b43_status(dev) > B43_STAT_INITIALIZED);
4773 if (!dev || b43_status(dev) != B43_STAT_INITIALIZED)
4774 return;
4775
4776 b43_set_status(dev, B43_STAT_UNINIT);
4777
4778 /* Stop the microcode PSM. */
4779 b43_maskset32(dev, B43_MMIO_MACCTL, ~B43_MACCTL_PSM_RUN,
4780 B43_MACCTL_PSM_JMP0);
4781
4782 switch (dev->dev->bus_type) {
4783#ifdef CONFIG_B43_BCMA
4784 case B43_BUS_BCMA:
4785 bcma_host_pci_down(dev->dev->bdev->bus);
4786 break;
4787#endif
4788#ifdef CONFIG_B43_SSB
4789 case B43_BUS_SSB:
4790 /* TODO */
4791 break;
4792#endif
4793 }
4794
4795 b43_dma_free(dev);
4796 b43_pio_free(dev);
4797 b43_chip_exit(dev);
4798 dev->phy.ops->switch_analog(dev, 0);
4799 if (dev->wl->current_beacon) {
4800 dev_kfree_skb_any(dev->wl->current_beacon);
4801 dev->wl->current_beacon = NULL;
4802 }
4803
4804 b43_device_disable(dev, 0);
4805 b43_bus_may_powerdown(dev);
4806}
4807
4808/* Initialize a wireless core */
4809static int b43_wireless_core_init(struct b43_wldev *dev)
4810{
4811 struct ssb_sprom *sprom = dev->dev->bus_sprom;
4812 struct b43_phy *phy = &dev->phy;
4813 int err;
4814 u64 hf;
4815
4816 B43_WARN_ON(b43_status(dev) != B43_STAT_UNINIT);
4817
4818 err = b43_bus_powerup(dev, 0);
4819 if (err)
4820 goto out;
4821 if (!b43_device_is_enabled(dev))
4822 b43_wireless_core_reset(dev, phy->gmode);
4823
4824 /* Reset all data structures. */
4825 setup_struct_wldev_for_init(dev);
4826 phy->ops->prepare_structs(dev);
4827
4828 /* Enable IRQ routing to this device. */
4829 switch (dev->dev->bus_type) {
4830#ifdef CONFIG_B43_BCMA
4831 case B43_BUS_BCMA:
4832 bcma_host_pci_irq_ctl(dev->dev->bdev->bus,
4833 dev->dev->bdev, true);
4834 bcma_host_pci_up(dev->dev->bdev->bus);
4835 break;
4836#endif
4837#ifdef CONFIG_B43_SSB
4838 case B43_BUS_SSB:
4839 ssb_pcicore_dev_irqvecs_enable(&dev->dev->sdev->bus->pcicore,
4840 dev->dev->sdev);
4841 break;
4842#endif
4843 }
4844
4845 b43_imcfglo_timeouts_workaround(dev);
4846 b43_bluetooth_coext_disable(dev);
4847 if (phy->ops->prepare_hardware) {
4848 err = phy->ops->prepare_hardware(dev);
4849 if (err)
4850 goto err_busdown;
4851 }
4852 err = b43_chip_init(dev);
4853 if (err)
4854 goto err_busdown;
4855 b43_shm_write16(dev, B43_SHM_SHARED,
4856 B43_SHM_SH_WLCOREREV, dev->dev->core_rev);
4857 hf = b43_hf_read(dev);
4858 if (phy->type == B43_PHYTYPE_G) {
4859 hf |= B43_HF_SYMW;
4860 if (phy->rev == 1)
4861 hf |= B43_HF_GDCW;
4862 if (sprom->boardflags_lo & B43_BFL_PACTRL)
4863 hf |= B43_HF_OFDMPABOOST;
4864 }
4865 if (phy->radio_ver == 0x2050) {
4866 if (phy->radio_rev == 6)
4867 hf |= B43_HF_4318TSSI;
4868 if (phy->radio_rev < 6)
4869 hf |= B43_HF_VCORECALC;
4870 }
4871 if (sprom->boardflags_lo & B43_BFL_XTAL_NOSLOW)
4872 hf |= B43_HF_DSCRQ; /* Disable slowclock requests from ucode. */
4873#if defined(CONFIG_B43_SSB) && defined(CONFIG_SSB_DRIVER_PCICORE)
4874 if (dev->dev->bus_type == B43_BUS_SSB &&
4875 dev->dev->sdev->bus->bustype == SSB_BUSTYPE_PCI &&
4876 dev->dev->sdev->bus->pcicore.dev->id.revision <= 10)
4877 hf |= B43_HF_PCISCW; /* PCI slow clock workaround. */
4878#endif
4879 hf &= ~B43_HF_SKCFPUP;
4880 b43_hf_write(dev, hf);
4881
4882 /* tell the ucode MAC capabilities */
4883 if (dev->dev->core_rev >= 13) {
4884 u32 mac_hw_cap = b43_read32(dev, B43_MMIO_MAC_HW_CAP);
4885
4886 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_MACHW_L,
4887 mac_hw_cap & 0xffff);
4888 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_MACHW_H,
4889 (mac_hw_cap >> 16) & 0xffff);
4890 }
4891
4892 b43_set_retry_limits(dev, B43_DEFAULT_SHORT_RETRY_LIMIT,
4893 B43_DEFAULT_LONG_RETRY_LIMIT);
4894 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_SFFBLIM, 3);
4895 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_LFFBLIM, 2);
4896
4897 /* Disable sending probe responses from firmware.
4898 * Setting the MaxTime to one usec will always trigger
4899 * a timeout, so we never send any probe resp.
4900 * A timeout of zero is infinite. */
4901 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PRMAXTIME, 1);
4902
4903 b43_rate_memory_init(dev);
4904 b43_set_phytxctl_defaults(dev);
4905
4906 /* Minimum Contention Window */
4907 if (phy->type == B43_PHYTYPE_B)
4908 b43_shm_write16(dev, B43_SHM_SCRATCH, B43_SHM_SC_MINCONT, 0x1F);
4909 else
4910 b43_shm_write16(dev, B43_SHM_SCRATCH, B43_SHM_SC_MINCONT, 0xF);
4911 /* Maximum Contention Window */
4912 b43_shm_write16(dev, B43_SHM_SCRATCH, B43_SHM_SC_MAXCONT, 0x3FF);
4913
4914 /* write phytype and phyvers */
4915 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PHYTYPE, phy->type);
4916 b43_shm_write16(dev, B43_SHM_SHARED, B43_SHM_SH_PHYVER, phy->rev);
4917
4918 if (b43_bus_host_is_pcmcia(dev->dev) ||
4919 b43_bus_host_is_sdio(dev->dev)) {
4920 dev->__using_pio_transfers = true;
4921 err = b43_pio_init(dev);
4922 } else if (dev->use_pio) {
4923 b43warn(dev->wl, "Forced PIO by use_pio module parameter. "
4924 "This should not be needed and will result in lower "
4925 "performance.\n");
4926 dev->__using_pio_transfers = true;
4927 err = b43_pio_init(dev);
4928 } else {
4929 dev->__using_pio_transfers = false;
4930 err = b43_dma_init(dev);
4931 }
4932 if (err)
4933 goto err_chip_exit;
4934 b43_qos_init(dev);
4935 b43_set_synth_pu_delay(dev, 1);
4936 b43_bluetooth_coext_enable(dev);
4937
4938 b43_bus_powerup(dev, !(sprom->boardflags_lo & B43_BFL_XTAL_NOSLOW));
4939 b43_upload_card_macaddress(dev);
4940 b43_security_init(dev);
4941
4942 ieee80211_wake_queues(dev->wl->hw);
4943
4944 b43_set_status(dev, B43_STAT_INITIALIZED);
4945
4946out:
4947 return err;
4948
4949err_chip_exit:
4950 b43_chip_exit(dev);
4951err_busdown:
4952 b43_bus_may_powerdown(dev);
4953 B43_WARN_ON(b43_status(dev) != B43_STAT_UNINIT);
4954 return err;
4955}
4956
4957static int b43_op_add_interface(struct ieee80211_hw *hw,
4958 struct ieee80211_vif *vif)
4959{
4960 struct b43_wl *wl = hw_to_b43_wl(hw);
4961 struct b43_wldev *dev;
4962 int err = -EOPNOTSUPP;
4963
4964 /* TODO: allow WDS/AP devices to coexist */
4965
4966 if (vif->type != NL80211_IFTYPE_AP &&
4967 vif->type != NL80211_IFTYPE_MESH_POINT &&
4968 vif->type != NL80211_IFTYPE_STATION &&
4969 vif->type != NL80211_IFTYPE_WDS &&
4970 vif->type != NL80211_IFTYPE_ADHOC)
4971 return -EOPNOTSUPP;
4972
4973 mutex_lock(&wl->mutex);
4974 if (wl->operating)
4975 goto out_mutex_unlock;
4976
4977 b43dbg(wl, "Adding Interface type %d\n", vif->type);
4978
4979 dev = wl->current_dev;
4980 wl->operating = true;
4981 wl->vif = vif;
4982 wl->if_type = vif->type;
4983 memcpy(wl->mac_addr, vif->addr, ETH_ALEN);
4984
4985 b43_adjust_opmode(dev);
4986 b43_set_pretbtt(dev);
4987 b43_set_synth_pu_delay(dev, 0);
4988 b43_upload_card_macaddress(dev);
4989
4990 err = 0;
4991 out_mutex_unlock:
4992 mutex_unlock(&wl->mutex);
4993
4994 if (err == 0)
4995 b43_op_bss_info_changed(hw, vif, &vif->bss_conf, ~0);
4996
4997 return err;
4998}
4999
5000static void b43_op_remove_interface(struct ieee80211_hw *hw,
5001 struct ieee80211_vif *vif)
5002{
5003 struct b43_wl *wl = hw_to_b43_wl(hw);
5004 struct b43_wldev *dev = wl->current_dev;
5005
5006 b43dbg(wl, "Removing Interface type %d\n", vif->type);
5007
5008 mutex_lock(&wl->mutex);
5009
5010 B43_WARN_ON(!wl->operating);
5011 B43_WARN_ON(wl->vif != vif);
5012 wl->vif = NULL;
5013
5014 wl->operating = false;
5015
5016 b43_adjust_opmode(dev);
5017 eth_zero_addr(wl->mac_addr);
5018 b43_upload_card_macaddress(dev);
5019
5020 mutex_unlock(&wl->mutex);
5021}
5022
5023static int b43_op_start(struct ieee80211_hw *hw)
5024{
5025 struct b43_wl *wl = hw_to_b43_wl(hw);
5026 struct b43_wldev *dev = wl->current_dev;
5027 int did_init = 0;
5028 int err = 0;
5029
5030 /* Kill all old instance specific information to make sure
5031 * the card won't use it in the short timeframe between start
5032 * and mac80211 reconfiguring it. */
5033 eth_zero_addr(wl->bssid);
5034 eth_zero_addr(wl->mac_addr);
5035 wl->filter_flags = 0;
5036 wl->radiotap_enabled = false;
5037 b43_qos_clear(wl);
5038 wl->beacon0_uploaded = false;
5039 wl->beacon1_uploaded = false;
5040 wl->beacon_templates_virgin = true;
5041 wl->radio_enabled = true;
5042
5043 mutex_lock(&wl->mutex);
5044
5045 if (b43_status(dev) < B43_STAT_INITIALIZED) {
5046 err = b43_wireless_core_init(dev);
5047 if (err)
5048 goto out_mutex_unlock;
5049 did_init = 1;
5050 }
5051
5052 if (b43_status(dev) < B43_STAT_STARTED) {
5053 err = b43_wireless_core_start(dev);
5054 if (err) {
5055 if (did_init)
5056 b43_wireless_core_exit(dev);
5057 goto out_mutex_unlock;
5058 }
5059 }
5060
5061 /* XXX: only do if device doesn't support rfkill irq */
5062 wiphy_rfkill_start_polling(hw->wiphy);
5063
5064 out_mutex_unlock:
5065 mutex_unlock(&wl->mutex);
5066
5067 /*
5068 * Configuration may have been overwritten during initialization.
5069 * Reload the configuration, but only if initialization was
5070 * successful. Reloading the configuration after a failed init
5071 * may hang the system.
5072 */
5073 if (!err)
5074 b43_op_config(hw, ~0);
5075
5076 return err;
5077}
5078
5079static void b43_op_stop(struct ieee80211_hw *hw)
5080{
5081 struct b43_wl *wl = hw_to_b43_wl(hw);
5082 struct b43_wldev *dev = wl->current_dev;
5083
5084 cancel_work_sync(&(wl->beacon_update_trigger));
5085
5086 if (!dev)
5087 goto out;
5088
5089 mutex_lock(&wl->mutex);
5090 if (b43_status(dev) >= B43_STAT_STARTED) {
5091 dev = b43_wireless_core_stop(dev);
5092 if (!dev)
5093 goto out_unlock;
5094 }
5095 b43_wireless_core_exit(dev);
5096 wl->radio_enabled = false;
5097
5098out_unlock:
5099 mutex_unlock(&wl->mutex);
5100out:
5101 cancel_work_sync(&(wl->txpower_adjust_work));
5102}
5103
5104static int b43_op_beacon_set_tim(struct ieee80211_hw *hw,
5105 struct ieee80211_sta *sta, bool set)
5106{
5107 struct b43_wl *wl = hw_to_b43_wl(hw);
5108
5109 b43_update_templates(wl);
5110
5111 return 0;
5112}
5113
5114static void b43_op_sta_notify(struct ieee80211_hw *hw,
5115 struct ieee80211_vif *vif,
5116 enum sta_notify_cmd notify_cmd,
5117 struct ieee80211_sta *sta)
5118{
5119 struct b43_wl *wl = hw_to_b43_wl(hw);
5120
5121 B43_WARN_ON(!vif || wl->vif != vif);
5122}
5123
5124static void b43_op_sw_scan_start_notifier(struct ieee80211_hw *hw,
5125 struct ieee80211_vif *vif,
5126 const u8 *mac_addr)
5127{
5128 struct b43_wl *wl = hw_to_b43_wl(hw);
5129 struct b43_wldev *dev;
5130
5131 mutex_lock(&wl->mutex);
5132 dev = wl->current_dev;
5133 if (dev && (b43_status(dev) >= B43_STAT_INITIALIZED)) {
5134 /* Disable CFP update during scan on other channels. */
5135 b43_hf_write(dev, b43_hf_read(dev) | B43_HF_SKCFPUP);
5136 }
5137 mutex_unlock(&wl->mutex);
5138}
5139
5140static void b43_op_sw_scan_complete_notifier(struct ieee80211_hw *hw,
5141 struct ieee80211_vif *vif)
5142{
5143 struct b43_wl *wl = hw_to_b43_wl(hw);
5144 struct b43_wldev *dev;
5145
5146 mutex_lock(&wl->mutex);
5147 dev = wl->current_dev;
5148 if (dev && (b43_status(dev) >= B43_STAT_INITIALIZED)) {
5149 /* Re-enable CFP update. */
5150 b43_hf_write(dev, b43_hf_read(dev) & ~B43_HF_SKCFPUP);
5151 }
5152 mutex_unlock(&wl->mutex);
5153}
5154
5155static int b43_op_get_survey(struct ieee80211_hw *hw, int idx,
5156 struct survey_info *survey)
5157{
5158 struct b43_wl *wl = hw_to_b43_wl(hw);
5159 struct b43_wldev *dev = wl->current_dev;
5160 struct ieee80211_conf *conf = &hw->conf;
5161
5162 if (idx != 0)
5163 return -ENOENT;
5164
5165 survey->channel = conf->chandef.chan;
5166 survey->filled = SURVEY_INFO_NOISE_DBM;
5167 survey->noise = dev->stats.link_noise;
5168
5169 return 0;
5170}
5171
5172static const struct ieee80211_ops b43_hw_ops = {
5173 .tx = b43_op_tx,
5174 .conf_tx = b43_op_conf_tx,
5175 .add_interface = b43_op_add_interface,
5176 .remove_interface = b43_op_remove_interface,
5177 .config = b43_op_config,
5178 .bss_info_changed = b43_op_bss_info_changed,
5179 .configure_filter = b43_op_configure_filter,
5180 .set_key = b43_op_set_key,
5181 .update_tkip_key = b43_op_update_tkip_key,
5182 .get_stats = b43_op_get_stats,
5183 .get_tsf = b43_op_get_tsf,
5184 .set_tsf = b43_op_set_tsf,
5185 .start = b43_op_start,
5186 .stop = b43_op_stop,
5187 .set_tim = b43_op_beacon_set_tim,
5188 .sta_notify = b43_op_sta_notify,
5189 .sw_scan_start = b43_op_sw_scan_start_notifier,
5190 .sw_scan_complete = b43_op_sw_scan_complete_notifier,
5191 .get_survey = b43_op_get_survey,
5192 .rfkill_poll = b43_rfkill_poll,
5193};
5194
5195/* Hard-reset the chip. Do not call this directly.
5196 * Use b43_controller_restart()
5197 */
5198static void b43_chip_reset(struct work_struct *work)
5199{
5200 struct b43_wldev *dev =
5201 container_of(work, struct b43_wldev, restart_work);
5202 struct b43_wl *wl = dev->wl;
5203 int err = 0;
5204 int prev_status;
5205
5206 mutex_lock(&wl->mutex);
5207
5208 prev_status = b43_status(dev);
5209 /* Bring the device down... */
5210 if (prev_status >= B43_STAT_STARTED) {
5211 dev = b43_wireless_core_stop(dev);
5212 if (!dev) {
5213 err = -ENODEV;
5214 goto out;
5215 }
5216 }
5217 if (prev_status >= B43_STAT_INITIALIZED)
5218 b43_wireless_core_exit(dev);
5219
5220 /* ...and up again. */
5221 if (prev_status >= B43_STAT_INITIALIZED) {
5222 err = b43_wireless_core_init(dev);
5223 if (err)
5224 goto out;
5225 }
5226 if (prev_status >= B43_STAT_STARTED) {
5227 err = b43_wireless_core_start(dev);
5228 if (err) {
5229 b43_wireless_core_exit(dev);
5230 goto out;
5231 }
5232 }
5233out:
5234 if (err)
5235 wl->current_dev = NULL; /* Failed to init the dev. */
5236 mutex_unlock(&wl->mutex);
5237
5238 if (err) {
5239 b43err(wl, "Controller restart FAILED\n");
5240 return;
5241 }
5242
5243 /* reload configuration */
5244 b43_op_config(wl->hw, ~0);
5245 if (wl->vif)
5246 b43_op_bss_info_changed(wl->hw, wl->vif, &wl->vif->bss_conf, ~0);
5247
5248 b43info(wl, "Controller restarted\n");
5249}
5250
5251static int b43_setup_bands(struct b43_wldev *dev,
5252 bool have_2ghz_phy, bool have_5ghz_phy)
5253{
5254 struct ieee80211_hw *hw = dev->wl->hw;
5255 struct b43_phy *phy = &dev->phy;
5256 bool limited_2g;
5257 bool limited_5g;
5258
5259 /* We don't support all 2 GHz channels on some devices */
5260 limited_2g = phy->radio_ver == 0x2057 &&
5261 (phy->radio_rev == 9 || phy->radio_rev == 14);
5262 limited_5g = phy->radio_ver == 0x2057 &&
5263 phy->radio_rev == 9;
5264
5265 if (have_2ghz_phy)
5266 hw->wiphy->bands[NL80211_BAND_2GHZ] = limited_2g ?
5267 &b43_band_2ghz_limited : &b43_band_2GHz;
5268 if (dev->phy.type == B43_PHYTYPE_N) {
5269 if (have_5ghz_phy)
5270 hw->wiphy->bands[NL80211_BAND_5GHZ] = limited_5g ?
5271 &b43_band_5GHz_nphy_limited :
5272 &b43_band_5GHz_nphy;
5273 } else {
5274 if (have_5ghz_phy)
5275 hw->wiphy->bands[NL80211_BAND_5GHZ] = &b43_band_5GHz_aphy;
5276 }
5277
5278 dev->phy.supports_2ghz = have_2ghz_phy;
5279 dev->phy.supports_5ghz = have_5ghz_phy;
5280
5281 return 0;
5282}
5283
5284static void b43_wireless_core_detach(struct b43_wldev *dev)
5285{
5286 /* We release firmware that late to not be required to re-request
5287 * is all the time when we reinit the core. */
5288 b43_release_firmware(dev);
5289 b43_phy_free(dev);
5290}
5291
5292static void b43_supported_bands(struct b43_wldev *dev, bool *have_2ghz_phy,
5293 bool *have_5ghz_phy)
5294{
5295 u16 dev_id = 0;
5296
5297#ifdef CONFIG_B43_BCMA
5298 if (dev->dev->bus_type == B43_BUS_BCMA &&
5299 dev->dev->bdev->bus->hosttype == BCMA_HOSTTYPE_PCI)
5300 dev_id = dev->dev->bdev->bus->host_pci->device;
5301#endif
5302#ifdef CONFIG_B43_SSB
5303 if (dev->dev->bus_type == B43_BUS_SSB &&
5304 dev->dev->sdev->bus->bustype == SSB_BUSTYPE_PCI)
5305 dev_id = dev->dev->sdev->bus->host_pci->device;
5306#endif
5307 /* Override with SPROM value if available */
5308 if (dev->dev->bus_sprom->dev_id)
5309 dev_id = dev->dev->bus_sprom->dev_id;
5310
5311 /* Note: below IDs can be "virtual" (not maching e.g. real PCI ID) */
5312 switch (dev_id) {
5313 case 0x4324: /* BCM4306 */
5314 case 0x4312: /* BCM4311 */
5315 case 0x4319: /* BCM4318 */
5316 case 0x4328: /* BCM4321 */
5317 case 0x432b: /* BCM4322 */
5318 case 0x4350: /* BCM43222 */
5319 case 0x4353: /* BCM43224 */
5320 case 0x0576: /* BCM43224 */
5321 case 0x435f: /* BCM6362 */
5322 case 0x4331: /* BCM4331 */
5323 case 0x4359: /* BCM43228 */
5324 case 0x43a0: /* BCM4360 */
5325 case 0x43b1: /* BCM4352 */
5326 /* Dual band devices */
5327 *have_2ghz_phy = true;
5328 *have_5ghz_phy = true;
5329 return;
5330 case 0x4321: /* BCM4306 */
5331 /* There are 14e4:4321 PCI devs with 2.4 GHz BCM4321 (N-PHY) */
5332 if (dev->phy.type != B43_PHYTYPE_G)
5333 break;
5334 /* fall through */
5335 case 0x4313: /* BCM4311 */
5336 case 0x431a: /* BCM4318 */
5337 case 0x432a: /* BCM4321 */
5338 case 0x432d: /* BCM4322 */
5339 case 0x4352: /* BCM43222 */
5340 case 0x435a: /* BCM43228 */
5341 case 0x4333: /* BCM4331 */
5342 case 0x43a2: /* BCM4360 */
5343 case 0x43b3: /* BCM4352 */
5344 /* 5 GHz only devices */
5345 *have_2ghz_phy = false;
5346 *have_5ghz_phy = true;
5347 return;
5348 }
5349
5350 /* As a fallback, try to guess using PHY type */
5351 switch (dev->phy.type) {
5352 case B43_PHYTYPE_G:
5353 case B43_PHYTYPE_N:
5354 case B43_PHYTYPE_LP:
5355 case B43_PHYTYPE_HT:
5356 case B43_PHYTYPE_LCN:
5357 *have_2ghz_phy = true;
5358 *have_5ghz_phy = false;
5359 return;
5360 }
5361
5362 B43_WARN_ON(1);
5363}
5364
5365static int b43_wireless_core_attach(struct b43_wldev *dev)
5366{
5367 struct b43_wl *wl = dev->wl;
5368 struct b43_phy *phy = &dev->phy;
5369 int err;
5370 u32 tmp;
5371 bool have_2ghz_phy = false, have_5ghz_phy = false;
5372
5373 /* Do NOT do any device initialization here.
5374 * Do it in wireless_core_init() instead.
5375 * This function is for gathering basic information about the HW, only.
5376 * Also some structs may be set up here. But most likely you want to have
5377 * that in core_init(), too.
5378 */
5379
5380 err = b43_bus_powerup(dev, 0);
5381 if (err) {
5382 b43err(wl, "Bus powerup failed\n");
5383 goto out;
5384 }
5385
5386 phy->do_full_init = true;
5387
5388 /* Try to guess supported bands for the first init needs */
5389 switch (dev->dev->bus_type) {
5390#ifdef CONFIG_B43_BCMA
5391 case B43_BUS_BCMA:
5392 tmp = bcma_aread32(dev->dev->bdev, BCMA_IOST);
5393 have_2ghz_phy = !!(tmp & B43_BCMA_IOST_2G_PHY);
5394 have_5ghz_phy = !!(tmp & B43_BCMA_IOST_5G_PHY);
5395 break;
5396#endif
5397#ifdef CONFIG_B43_SSB
5398 case B43_BUS_SSB:
5399 if (dev->dev->core_rev >= 5) {
5400 tmp = ssb_read32(dev->dev->sdev, SSB_TMSHIGH);
5401 have_2ghz_phy = !!(tmp & B43_TMSHIGH_HAVE_2GHZ_PHY);
5402 have_5ghz_phy = !!(tmp & B43_TMSHIGH_HAVE_5GHZ_PHY);
5403 } else
5404 B43_WARN_ON(1);
5405 break;
5406#endif
5407 }
5408
5409 dev->phy.gmode = have_2ghz_phy;
5410 b43_wireless_core_reset(dev, dev->phy.gmode);
5411
5412 /* Get the PHY type. */
5413 err = b43_phy_versioning(dev);
5414 if (err)
5415 goto err_powerdown;
5416
5417 /* Get real info about supported bands */
5418 b43_supported_bands(dev, &have_2ghz_phy, &have_5ghz_phy);
5419
5420 /* We don't support 5 GHz on some PHYs yet */
5421 if (have_5ghz_phy) {
5422 switch (dev->phy.type) {
5423 case B43_PHYTYPE_G:
5424 case B43_PHYTYPE_LP:
5425 case B43_PHYTYPE_HT:
5426 b43warn(wl, "5 GHz band is unsupported on this PHY\n");
5427 have_5ghz_phy = false;
5428 }
5429 }
5430
5431 if (!have_2ghz_phy && !have_5ghz_phy) {
5432 b43err(wl, "b43 can't support any band on this device\n");
5433 err = -EOPNOTSUPP;
5434 goto err_powerdown;
5435 }
5436
5437 err = b43_phy_allocate(dev);
5438 if (err)
5439 goto err_powerdown;
5440
5441 dev->phy.gmode = have_2ghz_phy;
5442 b43_wireless_core_reset(dev, dev->phy.gmode);
5443
5444 err = b43_validate_chipaccess(dev);
5445 if (err)
5446 goto err_phy_free;
5447 err = b43_setup_bands(dev, have_2ghz_phy, have_5ghz_phy);
5448 if (err)
5449 goto err_phy_free;
5450
5451 /* Now set some default "current_dev" */
5452 if (!wl->current_dev)
5453 wl->current_dev = dev;
5454 INIT_WORK(&dev->restart_work, b43_chip_reset);
5455
5456 dev->phy.ops->switch_analog(dev, 0);
5457 b43_device_disable(dev, 0);
5458 b43_bus_may_powerdown(dev);
5459
5460out:
5461 return err;
5462
5463err_phy_free:
5464 b43_phy_free(dev);
5465err_powerdown:
5466 b43_bus_may_powerdown(dev);
5467 return err;
5468}
5469
5470static void b43_one_core_detach(struct b43_bus_dev *dev)
5471{
5472 struct b43_wldev *wldev;
5473
5474 /* Do not cancel ieee80211-workqueue based work here.
5475 * See comment in b43_remove(). */
5476
5477 wldev = b43_bus_get_wldev(dev);
5478 b43_debugfs_remove_device(wldev);
5479 b43_wireless_core_detach(wldev);
5480 list_del(&wldev->list);
5481 b43_bus_set_wldev(dev, NULL);
5482 kfree(wldev);
5483}
5484
5485static int b43_one_core_attach(struct b43_bus_dev *dev, struct b43_wl *wl)
5486{
5487 struct b43_wldev *wldev;
5488 int err = -ENOMEM;
5489
5490 wldev = kzalloc(sizeof(*wldev), GFP_KERNEL);
5491 if (!wldev)
5492 goto out;
5493
5494 wldev->use_pio = b43_modparam_pio;
5495 wldev->dev = dev;
5496 wldev->wl = wl;
5497 b43_set_status(wldev, B43_STAT_UNINIT);
5498 wldev->bad_frames_preempt = modparam_bad_frames_preempt;
5499 INIT_LIST_HEAD(&wldev->list);
5500
5501 err = b43_wireless_core_attach(wldev);
5502 if (err)
5503 goto err_kfree_wldev;
5504
5505 b43_bus_set_wldev(dev, wldev);
5506 b43_debugfs_add_device(wldev);
5507
5508 out:
5509 return err;
5510
5511 err_kfree_wldev:
5512 kfree(wldev);
5513 return err;
5514}
5515
5516#define IS_PDEV(pdev, _vendor, _device, _subvendor, _subdevice) ( \
5517 (pdev->vendor == PCI_VENDOR_ID_##_vendor) && \
5518 (pdev->device == _device) && \
5519 (pdev->subsystem_vendor == PCI_VENDOR_ID_##_subvendor) && \
5520 (pdev->subsystem_device == _subdevice) )
5521
5522#ifdef CONFIG_B43_SSB
5523static void b43_sprom_fixup(struct ssb_bus *bus)
5524{
5525 struct pci_dev *pdev;
5526
5527 /* boardflags workarounds */
5528 if (bus->boardinfo.vendor == SSB_BOARDVENDOR_DELL &&
5529 bus->chip_id == 0x4301 && bus->sprom.board_rev == 0x74)
5530 bus->sprom.boardflags_lo |= B43_BFL_BTCOEXIST;
5531 if (bus->boardinfo.vendor == PCI_VENDOR_ID_APPLE &&
5532 bus->boardinfo.type == 0x4E && bus->sprom.board_rev > 0x40)
5533 bus->sprom.boardflags_lo |= B43_BFL_PACTRL;
5534 if (bus->bustype == SSB_BUSTYPE_PCI) {
5535 pdev = bus->host_pci;
5536 if (IS_PDEV(pdev, BROADCOM, 0x4318, ASUSTEK, 0x100F) ||
5537 IS_PDEV(pdev, BROADCOM, 0x4320, DELL, 0x0003) ||
5538 IS_PDEV(pdev, BROADCOM, 0x4320, HP, 0x12f8) ||
5539 IS_PDEV(pdev, BROADCOM, 0x4320, LINKSYS, 0x0015) ||
5540 IS_PDEV(pdev, BROADCOM, 0x4320, LINKSYS, 0x0014) ||
5541 IS_PDEV(pdev, BROADCOM, 0x4320, LINKSYS, 0x0013) ||
5542 IS_PDEV(pdev, BROADCOM, 0x4320, MOTOROLA, 0x7010))
5543 bus->sprom.boardflags_lo &= ~B43_BFL_BTCOEXIST;
5544 }
5545}
5546
5547static void b43_wireless_exit(struct b43_bus_dev *dev, struct b43_wl *wl)
5548{
5549 struct ieee80211_hw *hw = wl->hw;
5550
5551 ssb_set_devtypedata(dev->sdev, NULL);
5552 ieee80211_free_hw(hw);
5553}
5554#endif
5555
5556static struct b43_wl *b43_wireless_init(struct b43_bus_dev *dev)
5557{
5558 struct ssb_sprom *sprom = dev->bus_sprom;
5559 struct ieee80211_hw *hw;
5560 struct b43_wl *wl;
5561 char chip_name[6];
5562 int queue_num;
5563
5564 hw = ieee80211_alloc_hw(sizeof(*wl), &b43_hw_ops);
5565 if (!hw) {
5566 b43err(NULL, "Could not allocate ieee80211 device\n");
5567 return ERR_PTR(-ENOMEM);
5568 }
5569 wl = hw_to_b43_wl(hw);
5570
5571 /* fill hw info */
5572 ieee80211_hw_set(hw, RX_INCLUDES_FCS);
5573 ieee80211_hw_set(hw, SIGNAL_DBM);
5574 ieee80211_hw_set(hw, MFP_CAPABLE);
5575 hw->wiphy->interface_modes =
5576 BIT(NL80211_IFTYPE_AP) |
5577 BIT(NL80211_IFTYPE_MESH_POINT) |
5578 BIT(NL80211_IFTYPE_STATION) |
5579#ifdef CONFIG_WIRELESS_WDS
5580 BIT(NL80211_IFTYPE_WDS) |
5581#endif
5582 BIT(NL80211_IFTYPE_ADHOC);
5583
5584 hw->wiphy->flags |= WIPHY_FLAG_IBSS_RSN;
5585
5586 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_CQM_RSSI_LIST);
5587
5588 wl->hw_registered = false;
5589 hw->max_rates = 2;
5590 SET_IEEE80211_DEV(hw, dev->dev);
5591 if (is_valid_ether_addr(sprom->et1mac))
5592 SET_IEEE80211_PERM_ADDR(hw, sprom->et1mac);
5593 else
5594 SET_IEEE80211_PERM_ADDR(hw, sprom->il0mac);
5595
5596 /* Initialize struct b43_wl */
5597 wl->hw = hw;
5598 mutex_init(&wl->mutex);
5599 spin_lock_init(&wl->hardirq_lock);
5600 spin_lock_init(&wl->beacon_lock);
5601 INIT_WORK(&wl->beacon_update_trigger, b43_beacon_update_trigger_work);
5602 INIT_WORK(&wl->txpower_adjust_work, b43_phy_txpower_adjust_work);
5603 INIT_WORK(&wl->tx_work, b43_tx_work);
5604
5605 /* Initialize queues and flags. */
5606 for (queue_num = 0; queue_num < B43_QOS_QUEUE_NUM; queue_num++) {
5607 skb_queue_head_init(&wl->tx_queue[queue_num]);
5608 wl->tx_queue_stopped[queue_num] = false;
5609 }
5610
5611 snprintf(chip_name, ARRAY_SIZE(chip_name),
5612 (dev->chip_id > 0x9999) ? "%d" : "%04X", dev->chip_id);
5613 b43info(wl, "Broadcom %s WLAN found (core revision %u)\n", chip_name,
5614 dev->core_rev);
5615 return wl;
5616}
5617
5618#ifdef CONFIG_B43_BCMA
5619static int b43_bcma_probe(struct bcma_device *core)
5620{
5621 struct b43_bus_dev *dev;
5622 struct b43_wl *wl;
5623 int err;
5624
5625 if (!modparam_allhwsupport &&
5626 (core->id.rev == 0x17 || core->id.rev == 0x18)) {
5627 pr_err("Support for cores revisions 0x17 and 0x18 disabled by module param allhwsupport=0. Try b43.allhwsupport=1\n");
5628 return -ENOTSUPP;
5629 }
5630
5631 dev = b43_bus_dev_bcma_init(core);
5632 if (!dev)
5633 return -ENODEV;
5634
5635 wl = b43_wireless_init(dev);
5636 if (IS_ERR(wl)) {
5637 err = PTR_ERR(wl);
5638 goto bcma_out;
5639 }
5640
5641 err = b43_one_core_attach(dev, wl);
5642 if (err)
5643 goto bcma_err_wireless_exit;
5644
5645 /* setup and start work to load firmware */
5646 INIT_WORK(&wl->firmware_load, b43_request_firmware);
5647 schedule_work(&wl->firmware_load);
5648
5649 return err;
5650
5651bcma_err_wireless_exit:
5652 ieee80211_free_hw(wl->hw);
5653bcma_out:
5654 kfree(dev);
5655 return err;
5656}
5657
5658static void b43_bcma_remove(struct bcma_device *core)
5659{
5660 struct b43_wldev *wldev = bcma_get_drvdata(core);
5661 struct b43_wl *wl = wldev->wl;
5662
5663 /* We must cancel any work here before unregistering from ieee80211,
5664 * as the ieee80211 unreg will destroy the workqueue. */
5665 cancel_work_sync(&wldev->restart_work);
5666 cancel_work_sync(&wl->firmware_load);
5667
5668 B43_WARN_ON(!wl);
5669 if (!wldev->fw.ucode.data)
5670 return; /* NULL if firmware never loaded */
5671 if (wl->current_dev == wldev && wl->hw_registered) {
5672 b43_leds_stop(wldev);
5673 ieee80211_unregister_hw(wl->hw);
5674 }
5675
5676 b43_one_core_detach(wldev->dev);
5677
5678 /* Unregister HW RNG driver */
5679 b43_rng_exit(wl);
5680
5681 b43_leds_unregister(wl);
5682 ieee80211_free_hw(wl->hw);
5683 kfree(wldev->dev);
5684}
5685
5686static struct bcma_driver b43_bcma_driver = {
5687 .name = KBUILD_MODNAME,
5688 .id_table = b43_bcma_tbl,
5689 .probe = b43_bcma_probe,
5690 .remove = b43_bcma_remove,
5691};
5692#endif
5693
5694#ifdef CONFIG_B43_SSB
5695static
5696int b43_ssb_probe(struct ssb_device *sdev, const struct ssb_device_id *id)
5697{
5698 struct b43_bus_dev *dev;
5699 struct b43_wl *wl;
5700 int err;
5701
5702 dev = b43_bus_dev_ssb_init(sdev);
5703 if (!dev)
5704 return -ENOMEM;
5705
5706 wl = ssb_get_devtypedata(sdev);
5707 if (wl) {
5708 b43err(NULL, "Dual-core devices are not supported\n");
5709 err = -ENOTSUPP;
5710 goto err_ssb_kfree_dev;
5711 }
5712
5713 b43_sprom_fixup(sdev->bus);
5714
5715 wl = b43_wireless_init(dev);
5716 if (IS_ERR(wl)) {
5717 err = PTR_ERR(wl);
5718 goto err_ssb_kfree_dev;
5719 }
5720 ssb_set_devtypedata(sdev, wl);
5721 B43_WARN_ON(ssb_get_devtypedata(sdev) != wl);
5722
5723 err = b43_one_core_attach(dev, wl);
5724 if (err)
5725 goto err_ssb_wireless_exit;
5726
5727 /* setup and start work to load firmware */
5728 INIT_WORK(&wl->firmware_load, b43_request_firmware);
5729 schedule_work(&wl->firmware_load);
5730
5731 return err;
5732
5733err_ssb_wireless_exit:
5734 b43_wireless_exit(dev, wl);
5735err_ssb_kfree_dev:
5736 kfree(dev);
5737 return err;
5738}
5739
5740static void b43_ssb_remove(struct ssb_device *sdev)
5741{
5742 struct b43_wl *wl = ssb_get_devtypedata(sdev);
5743 struct b43_wldev *wldev = ssb_get_drvdata(sdev);
5744 struct b43_bus_dev *dev = wldev->dev;
5745
5746 /* We must cancel any work here before unregistering from ieee80211,
5747 * as the ieee80211 unreg will destroy the workqueue. */
5748 cancel_work_sync(&wldev->restart_work);
5749 cancel_work_sync(&wl->firmware_load);
5750
5751 B43_WARN_ON(!wl);
5752 if (!wldev->fw.ucode.data)
5753 return; /* NULL if firmware never loaded */
5754 if (wl->current_dev == wldev && wl->hw_registered) {
5755 b43_leds_stop(wldev);
5756 ieee80211_unregister_hw(wl->hw);
5757 }
5758
5759 b43_one_core_detach(dev);
5760
5761 /* Unregister HW RNG driver */
5762 b43_rng_exit(wl);
5763
5764 b43_leds_unregister(wl);
5765 b43_wireless_exit(dev, wl);
5766 kfree(dev);
5767}
5768
5769static struct ssb_driver b43_ssb_driver = {
5770 .name = KBUILD_MODNAME,
5771 .id_table = b43_ssb_tbl,
5772 .probe = b43_ssb_probe,
5773 .remove = b43_ssb_remove,
5774};
5775#endif /* CONFIG_B43_SSB */
5776
5777/* Perform a hardware reset. This can be called from any context. */
5778void b43_controller_restart(struct b43_wldev *dev, const char *reason)
5779{
5780 /* Must avoid requeueing, if we are in shutdown. */
5781 if (b43_status(dev) < B43_STAT_INITIALIZED)
5782 return;
5783 b43info(dev->wl, "Controller RESET (%s) ...\n", reason);
5784 ieee80211_queue_work(dev->wl->hw, &dev->restart_work);
5785}
5786
5787static void b43_print_driverinfo(void)
5788{
5789 const char *feat_pci = "", *feat_pcmcia = "", *feat_nphy = "",
5790 *feat_leds = "", *feat_sdio = "";
5791
5792#ifdef CONFIG_B43_PCI_AUTOSELECT
5793 feat_pci = "P";
5794#endif
5795#ifdef CONFIG_B43_PCMCIA
5796 feat_pcmcia = "M";
5797#endif
5798#ifdef CONFIG_B43_PHY_N
5799 feat_nphy = "N";
5800#endif
5801#ifdef CONFIG_B43_LEDS
5802 feat_leds = "L";
5803#endif
5804#ifdef CONFIG_B43_SDIO
5805 feat_sdio = "S";
5806#endif
5807 printk(KERN_INFO "Broadcom 43xx driver loaded "
5808 "[ Features: %s%s%s%s%s ]\n",
5809 feat_pci, feat_pcmcia, feat_nphy,
5810 feat_leds, feat_sdio);
5811}
5812
5813static int __init b43_init(void)
5814{
5815 int err;
5816
5817 b43_debugfs_init();
5818 err = b43_sdio_init();
5819 if (err)
5820 goto err_dfs_exit;
5821#ifdef CONFIG_B43_BCMA
5822 err = bcma_driver_register(&b43_bcma_driver);
5823 if (err)
5824 goto err_sdio_exit;
5825#endif
5826#ifdef CONFIG_B43_SSB
5827 err = ssb_driver_register(&b43_ssb_driver);
5828 if (err)
5829 goto err_bcma_driver_exit;
5830#endif
5831 b43_print_driverinfo();
5832
5833 return err;
5834
5835#ifdef CONFIG_B43_SSB
5836err_bcma_driver_exit:
5837#endif
5838#ifdef CONFIG_B43_BCMA
5839 bcma_driver_unregister(&b43_bcma_driver);
5840err_sdio_exit:
5841#endif
5842 b43_sdio_exit();
5843err_dfs_exit:
5844 b43_debugfs_exit();
5845 return err;
5846}
5847
5848static void __exit b43_exit(void)
5849{
5850#ifdef CONFIG_B43_SSB
5851 ssb_driver_unregister(&b43_ssb_driver);
5852#endif
5853#ifdef CONFIG_B43_BCMA
5854 bcma_driver_unregister(&b43_bcma_driver);
5855#endif
5856 b43_sdio_exit();
5857 b43_debugfs_exit();
5858}
5859
5860module_init(b43_init)
5861module_exit(b43_exit)