1 // SPDX-License-Identifier: GPL-2.0
2 /******************************************************************************
5 * Copyright(c) 2007 - 2010 Realtek Corporation. All rights reserved.
6 * Linux device driver for RTL8192SU
8 * Modifications for inclusion into the Linux staging tree are
9 * Copyright(c) 2010 Larry Finger. All rights reserved.
11 * Contact information:
12 * WLAN FAE <wlanfae@realtek.com>.
13 * Larry Finger <Larry.Finger@lwfinger.net>
15 ******************************************************************************/
17 #define _RTL8712_CMD_C_
19 #include <linux/compiler.h>
20 #include <linux/kernel.h>
21 #include <linux/errno.h>
22 #include <linux/slab.h>
23 #include <linux/sched/signal.h>
24 #include <linux/module.h>
25 #include <linux/kref.h>
26 #include <linux/netdevice.h>
27 #include <linux/skbuff.h>
28 #include <linux/usb.h>
29 #include <linux/usb/ch9.h>
30 #include <linux/circ_buf.h>
31 #include <linux/uaccess.h>
32 #include <asm/byteorder.h>
33 #include <linux/atomic.h>
34 #include <linux/semaphore.h>
35 #include <linux/rtnetlink.h>
37 #include "osdep_service.h"
38 #include "drv_types.h"
39 #include "recv_osdep.h"
40 #include "mlme_osdep.h"
41 #include "rtl871x_ioctl_set.h"
43 static void check_hw_pbc(struct _adapter *padapter)
47 r8712_write8(padapter, MAC_PINMUX_CTRL, (GPIOMUX_EN | GPIOSEL_GPIO));
48 tmp1byte = r8712_read8(padapter, GPIO_IO_SEL);
49 tmp1byte &= ~(HAL_8192S_HW_GPIO_WPS_BIT);
50 r8712_write8(padapter, GPIO_IO_SEL, tmp1byte);
51 tmp1byte = r8712_read8(padapter, GPIO_CTRL);
54 if (tmp1byte & HAL_8192S_HW_GPIO_WPS_BIT) {
55 /* Here we only set bPbcPressed to true
56 * After trigger PBC, the variable will be set to false
58 DBG_8712("CheckPbcGPIO - PBC is pressed !!!!\n");
59 /* 0 is the default value and it means the application monitors
60 * the HW PBC doesn't provide its pid to driver.
62 if (padapter->pid == 0)
64 kill_pid(find_vpid(padapter->pid), SIGUSR1, 1);
68 /* query rx phy status from fw.
70 * Infrastructure mode: beacon , data.
72 static void query_fw_rx_phy_status(struct _adapter *padapter)
77 if (check_fwstate(&padapter->mlmepriv, _FW_LINKED)) {
78 r8712_write32(padapter, IOCMD_CTRL_REG, 0xf4000001);
80 /* Wait FW complete IO Cmd */
81 while ((r8712_read32(padapter, IOCMD_CTRL_REG)) &&
87 val32 = r8712_read32(padapter, IOCMD_DATA_REG);
91 padapter->recvpriv.fw_rssi =
92 (u8)r8712_signal_scale_mapping(val32);
96 /* check mlme, hw, phy, or dynamic algorithm status. */
97 static void StatusWatchdogCallback(struct _adapter *padapter)
99 check_hw_pbc(padapter);
100 query_fw_rx_phy_status(padapter);
103 static void r871x_internal_cmd_hdl(struct _adapter *padapter, u8 *pbuf)
105 struct drvint_cmd_parm *pdrvcmd;
109 pdrvcmd = (struct drvint_cmd_parm *)pbuf;
110 switch (pdrvcmd->i_cid) {
112 StatusWatchdogCallback(padapter);
117 kfree(pdrvcmd->pbuf);
120 static u8 read_macreg_hdl(struct _adapter *padapter, u8 *pbuf)
122 void (*pcmd_callback)(struct _adapter *dev, struct cmd_obj *pcmd);
123 struct cmd_obj *pcmd = (struct cmd_obj *)pbuf;
125 /* invoke cmd->callback function */
126 pcmd_callback = cmd_callback[pcmd->cmdcode].callback;
128 r8712_free_cmd_obj(pcmd);
130 pcmd_callback(padapter, pcmd);
134 static u8 write_macreg_hdl(struct _adapter *padapter, u8 *pbuf)
136 void (*pcmd_callback)(struct _adapter *dev, struct cmd_obj *pcmd);
137 struct cmd_obj *pcmd = (struct cmd_obj *)pbuf;
139 /* invoke cmd->callback function */
140 pcmd_callback = cmd_callback[pcmd->cmdcode].callback;
142 r8712_free_cmd_obj(pcmd);
144 pcmd_callback(padapter, pcmd);
148 static u8 read_bbreg_hdl(struct _adapter *padapter, u8 *pbuf)
151 void (*pcmd_callback)(struct _adapter *dev, struct cmd_obj *pcmd);
152 struct cmd_obj *pcmd = (struct cmd_obj *)pbuf;
154 if (pcmd->rsp && pcmd->rspsz > 0)
155 memcpy(pcmd->rsp, (u8 *)&val, pcmd->rspsz);
156 pcmd_callback = cmd_callback[pcmd->cmdcode].callback;
158 r8712_free_cmd_obj(pcmd);
160 pcmd_callback(padapter, pcmd);
164 static u8 write_bbreg_hdl(struct _adapter *padapter, u8 *pbuf)
166 void (*pcmd_callback)(struct _adapter *dev, struct cmd_obj *pcmd);
167 struct cmd_obj *pcmd = (struct cmd_obj *)pbuf;
169 pcmd_callback = cmd_callback[pcmd->cmdcode].callback;
171 r8712_free_cmd_obj(pcmd);
173 pcmd_callback(padapter, pcmd);
177 static u8 read_rfreg_hdl(struct _adapter *padapter, u8 *pbuf)
180 void (*pcmd_callback)(struct _adapter *dev, struct cmd_obj *pcmd);
181 struct cmd_obj *pcmd = (struct cmd_obj *)pbuf;
183 if (pcmd->rsp && pcmd->rspsz > 0)
184 memcpy(pcmd->rsp, (u8 *)&val, pcmd->rspsz);
185 pcmd_callback = cmd_callback[pcmd->cmdcode].callback;
187 r8712_free_cmd_obj(pcmd);
189 pcmd_callback(padapter, pcmd);
193 static u8 write_rfreg_hdl(struct _adapter *padapter, u8 *pbuf)
195 void (*pcmd_callback)(struct _adapter *dev, struct cmd_obj *pcmd);
196 struct cmd_obj *pcmd = (struct cmd_obj *)pbuf;
198 pcmd_callback = cmd_callback[pcmd->cmdcode].callback;
200 r8712_free_cmd_obj(pcmd);
202 pcmd_callback(padapter, pcmd);
206 static u8 sys_suspend_hdl(struct _adapter *padapter, u8 *pbuf)
208 struct cmd_obj *pcmd = (struct cmd_obj *)pbuf;
210 r8712_free_cmd_obj(pcmd);
214 static struct cmd_obj *cmd_hdl_filter(struct _adapter *padapter,
215 struct cmd_obj *pcmd)
217 struct cmd_obj *pcmd_r;
223 switch (pcmd->cmdcode) {
224 case GEN_CMD_CODE(_Read_MACREG):
225 read_macreg_hdl(padapter, (u8 *)pcmd);
228 case GEN_CMD_CODE(_Write_MACREG):
229 write_macreg_hdl(padapter, (u8 *)pcmd);
232 case GEN_CMD_CODE(_Read_BBREG):
233 read_bbreg_hdl(padapter, (u8 *)pcmd);
235 case GEN_CMD_CODE(_Write_BBREG):
236 write_bbreg_hdl(padapter, (u8 *)pcmd);
238 case GEN_CMD_CODE(_Read_RFREG):
239 read_rfreg_hdl(padapter, (u8 *)pcmd);
241 case GEN_CMD_CODE(_Write_RFREG):
242 write_rfreg_hdl(padapter, (u8 *)pcmd);
244 case GEN_CMD_CODE(_SetUsbSuspend):
245 sys_suspend_hdl(padapter, (u8 *)pcmd);
247 case GEN_CMD_CODE(_JoinBss):
248 r8712_joinbss_reset(padapter);
249 /* Before set JoinBss_CMD to FW, driver must ensure FW is in
250 * PS_MODE_ACTIVE. Directly write rpwm to radio on and assign
251 * new pwr_mode to Driver, instead of use workitem to change
254 if (padapter->pwrctrlpriv.pwr_mode > PS_MODE_ACTIVE) {
255 padapter->pwrctrlpriv.pwr_mode = PS_MODE_ACTIVE;
256 mutex_lock(&padapter->pwrctrlpriv.mutex_lock);
257 r8712_set_rpwm(padapter, PS_STATE_S4);
258 mutex_unlock(&padapter->pwrctrlpriv.mutex_lock);
263 r871x_internal_cmd_hdl(padapter, pcmd->parmbuf);
264 r8712_free_cmd_obj(pcmd);
271 return pcmd_r; /* if returning pcmd_r == NULL, pcmd must be free. */
274 static u8 check_cmd_fifo(struct _adapter *padapter, uint sz)
279 u8 r8712_fw_cmd(struct _adapter *pAdapter, u32 cmd)
281 int pollingcnts = 50;
283 r8712_write32(pAdapter, IOCMD_CTRL_REG, cmd);
285 while ((r8712_read32(pAdapter, IOCMD_CTRL_REG != 0)) &&
290 if (pollingcnts == 0)
295 void r8712_fw_cmd_data(struct _adapter *pAdapter, u32 *value, u8 flag)
297 if (flag == 0) /* set */
298 r8712_write32(pAdapter, IOCMD_DATA_REG, *value);
300 *value = r8712_read32(pAdapter, IOCMD_DATA_REG);
303 int r8712_cmd_thread(void *context)
305 struct cmd_obj *pcmd;
306 unsigned int cmdsz, wr_sz;
308 struct tx_desc *pdesc;
309 void (*pcmd_callback)(struct _adapter *dev, struct cmd_obj *pcmd);
310 struct _adapter *padapter = context;
311 struct cmd_priv *pcmdpriv = &padapter->cmdpriv;
312 struct completion *cmd_queue_comp =
313 &pcmdpriv->cmd_queue_comp;
314 struct mutex *pwctrl_lock = &padapter->pwrctrlpriv.mutex_lock;
316 allow_signal(SIGTERM);
318 if (wait_for_completion_interruptible(cmd_queue_comp))
320 if (padapter->bDriverStopped || padapter->bSurpriseRemoved)
322 if (r8712_register_cmd_alive(padapter) != _SUCCESS)
325 pcmd = r8712_dequeue_cmd(&pcmdpriv->cmd_queue);
327 r8712_unregister_cmd_alive(padapter);
330 pcmdbuf = (__le32 *)pcmdpriv->cmd_buf;
331 pdesc = (struct tx_desc *)pcmdbuf;
332 memset(pdesc, 0, TXDESC_SIZE);
333 pcmd = cmd_hdl_filter(padapter, pcmd);
334 if (pcmd) { /* if pcmd != NULL, cmd will be handled by f/w */
335 struct dvobj_priv *pdvobj = &padapter->dvobjpriv;
337 u16 cmdcode = pcmd->cmdcode;
339 pcmdpriv->cmd_issued_cnt++;
340 cmdsz = round_up(pcmd->cmdsz, 8);
341 wr_sz = TXDESC_SIZE + 8 + cmdsz;
342 pdesc->txdw0 |= cpu_to_le32((wr_sz - TXDESC_SIZE) &
344 if (pdvobj->ishighspeed) {
345 if ((wr_sz % 512) == 0)
348 if ((wr_sz % 64) == 0)
351 if (blnPending) { /* 32 bytes for TX Desc - 8 offset */
352 pdesc->txdw0 |= cpu_to_le32(((TXDESC_SIZE +
353 OFFSET_SZ + 8) << OFFSET_SHT) &
356 pdesc->txdw0 |= cpu_to_le32(((TXDESC_SIZE +
361 pdesc->txdw0 |= cpu_to_le32(OWN | FSG | LSG);
362 pdesc->txdw1 |= cpu_to_le32((0x13 << QSEL_SHT) &
364 pcmdbuf += (TXDESC_SIZE >> 2);
365 *pcmdbuf = cpu_to_le32((cmdsz & 0x0000ffff) |
366 (pcmd->cmdcode << 16) |
367 (pcmdpriv->cmd_seq << 24));
368 pcmdbuf += 2; /* 8 bytes alignment */
369 memcpy((u8 *)pcmdbuf, pcmd->parmbuf, pcmd->cmdsz);
370 while (check_cmd_fifo(padapter, wr_sz) == _FAIL) {
371 if (padapter->bDriverStopped ||
372 padapter->bSurpriseRemoved)
378 wr_sz += 8; /* Append 8 bytes */
379 r8712_write_mem(padapter, RTL8712_DMA_H2CCMD, wr_sz,
382 if (cmdcode == GEN_CMD_CODE(_CreateBss)) {
383 pcmd->res = H2C_SUCCESS;
384 pcmd_callback = cmd_callback[cmdcode].callback;
386 pcmd_callback(padapter, pcmd);
389 if (cmdcode == GEN_CMD_CODE(_SetPwrMode)) {
390 if (padapter->pwrctrlpriv.bSleep) {
391 mutex_lock(pwctrl_lock);
392 r8712_set_rpwm(padapter, PS_STATE_S2);
393 mutex_unlock(pwctrl_lock);
396 r8712_free_cmd_obj(pcmd);
397 if (list_empty(&pcmdpriv->cmd_queue.queue)) {
398 r8712_unregister_cmd_alive(padapter);
406 flush_signals_thread();
408 /* free all cmd_obj resources */
410 pcmd = r8712_dequeue_cmd(&pcmdpriv->cmd_queue);
413 r8712_free_cmd_obj(pcmd);
415 complete(&pcmdpriv->terminate_cmdthread_comp);
419 void r8712_event_handle(struct _adapter *padapter, __le32 *peventbuf)
421 u8 evt_code, evt_seq;
423 void (*event_callback)(struct _adapter *dev, u8 *pbuf);
424 struct evt_priv *pevt_priv = &padapter->evtpriv;
428 evt_sz = (u16)(le32_to_cpu(*peventbuf) & 0xffff);
429 evt_seq = (u8)((le32_to_cpu(*peventbuf) >> 24) & 0x7f);
430 evt_code = (u8)((le32_to_cpu(*peventbuf) >> 16) & 0xff);
431 /* checking event sequence... */
432 if ((evt_seq & 0x7f) != pevt_priv->event_seq) {
433 pevt_priv->event_seq = ((evt_seq + 1) & 0x7f);
436 /* checking if event code is valid */
437 if (evt_code >= MAX_C2HEVT) {
438 pevt_priv->event_seq = ((evt_seq + 1) & 0x7f);
440 } else if ((evt_code == GEN_EVT_CODE(_Survey)) &&
441 (evt_sz > sizeof(struct wlan_bssid_ex))) {
442 pevt_priv->event_seq = ((evt_seq + 1) & 0x7f);
445 /* checking if event size match the event parm size */
446 if ((wlanevents[evt_code].parmsize) &&
447 (wlanevents[evt_code].parmsize != evt_sz)) {
448 pevt_priv->event_seq = ((evt_seq + 1) & 0x7f);
450 } else if ((evt_sz == 0) && (evt_code != GEN_EVT_CODE(_WPS_PBC))) {
451 pevt_priv->event_seq = ((evt_seq + 1) & 0x7f);
454 pevt_priv->event_seq++; /* update evt_seq */
455 if (pevt_priv->event_seq > 127)
456 pevt_priv->event_seq = 0;
457 /* move to event content, 8 bytes alignment */
458 peventbuf = peventbuf + 2;
459 event_callback = wlanevents[evt_code].event_callback;
461 event_callback(padapter, (u8 *)peventbuf);
462 pevt_priv->evt_done_cnt++;