1 /* $NetBSD: if_atu.c,v 1.29 2008/05/24 16:40:58 cube Exp $ */ 2 /* $OpenBSD: if_atu.c,v 1.48 2004/12/30 01:53:21 dlg Exp $ */ 3 /* 4 * Copyright (c) 2003, 2004 5 * Daan Vreeken <Danovitsch@Vitsch.net>. All rights reserved. 6 * 7 * Redistribution and use in source and binary forms, with or without 8 * modification, are permitted provided that the following conditions 9 * are met: 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 2. Redistributions in binary form must reproduce the above copyright 13 * notice, this list of conditions and the following disclaimer in the 14 * documentation and/or other materials provided with the distribution. 15 * 3. All advertising materials mentioning features or use of this software 16 * must display the following acknowledgement: 17 * This product includes software developed by Daan Vreeken. 18 * 4. Neither the name of the author nor the names of any co-contributors 19 * may be used to endorse or promote products derived from this software 20 * without specific prior written permission. 21 * 22 * THIS SOFTWARE IS PROVIDED BY Daan Vreeken AND CONTRIBUTORS ``AS IS'' AND 23 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 24 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 25 * ARE DISCLAIMED. IN NO EVENT SHALL Daan Vreeken OR THE VOICES IN HIS HEAD 26 * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 27 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 28 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 29 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 30 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 31 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF 32 * THE POSSIBILITY OF SUCH DAMAGE. 33 */ 34 35 /* 36 * Atmel AT76c503 / AT76c503a / AT76c505 / AT76c505a USB WLAN driver 37 * version 0.5 - 2004-08-03 38 * 39 * Originally written by Daan Vreeken <Danovitsch @ Vitsch . net> 40 * http://vitsch.net/bsd/atuwi 41 * 42 * Contributed to by : 43 * Chris Whitehouse, Alistair Phillips, Peter Pilka, Martijn van Buul, 44 * Suihong Liang, Arjan van Leeuwen, Stuart Walsh 45 * 46 * Ported to OpenBSD by Theo de Raadt and David Gwynne. 47 * Ported to NetBSD by Jesse Off 48 */ 49 50 #include <sys/cdefs.h> 51 __KERNEL_RCSID(0, "$NetBSD: if_atu.c,v 1.29 2008/05/24 16:40:58 cube Exp $"); 52 53 #include "bpfilter.h" 54 55 #include <sys/param.h> 56 #include <sys/sockio.h> 57 #include <sys/mbuf.h> 58 #include <sys/kernel.h> 59 #include <sys/socket.h> 60 #include <sys/systm.h> 61 #include <sys/malloc.h> 62 #include <sys/kthread.h> 63 #include <sys/queue.h> 64 #include <sys/device.h> 65 66 #include <sys/bus.h> 67 68 #include <dev/usb/usb.h> 69 #include <dev/usb/usbdi.h> 70 #include <dev/usb/usbdi_util.h> 71 #include <dev/usb/usbdivar.h> 72 73 #include <dev/usb/usbdevs.h> 74 75 #include <dev/microcode/atmel/atmel_intersil_fw.h> 76 #include <dev/microcode/atmel/atmel_rfmd2958-smc_fw.h> 77 #include <dev/microcode/atmel/atmel_rfmd2958_fw.h> 78 #include <dev/microcode/atmel/atmel_rfmd_fw.h> 79 80 #if NBPFILTER > 0 81 #include <net/bpf.h> 82 #include <net/bpfdesc.h> 83 #endif 84 85 #include <net/if.h> 86 #include <net/if_dl.h> 87 #include <net/if_media.h> 88 #include <net/if_ether.h> 89 90 #ifdef INET 91 #include <netinet/in.h> 92 #include <netinet/if_ether.h> 93 #endif 94 95 #include <net80211/ieee80211_var.h> 96 #include <net80211/ieee80211_radiotap.h> 97 98 #ifdef USB_DEBUG 99 #define ATU_DEBUG 100 #endif 101 102 #include <dev/usb/if_atureg.h> 103 104 #ifdef ATU_DEBUG 105 #define DPRINTF(x) do { if (atudebug) printf x; } while (0) 106 #define DPRINTFN(n,x) do { if (atudebug>(n)) printf x; } while (0) 107 int atudebug = 1; 108 #else 109 #define DPRINTF(x) 110 #define DPRINTFN(n,x) 111 #endif 112 113 /* 114 * Various supported device vendors/products/radio type. 115 */ 116 struct atu_type atu_devs[] = { 117 { USB_VENDOR_ATMEL, USB_PRODUCT_ATMEL_BW002, 118 RadioRFMD, ATU_NO_QUIRK }, 119 { USB_VENDOR_BELKIN, USB_PRODUCT_BELKIN_F5D6050, 120 RadioRFMD, ATU_NO_QUIRK }, 121 { USB_VENDOR_ATMEL, USB_PRODUCT_ATMEL_AT76C503A, 122 RadioIntersil, ATU_NO_QUIRK }, 123 { USB_VENDOR_LEXAR, USB_PRODUCT_LEXAR_2662WAR, 124 RadioRFMD, ATU_NO_QUIRK }, 125 /* Belkin F5D6050 */ 126 { USB_VENDOR_SMC3, USB_PRODUCT_SMC3_2662WUSB, 127 RadioRFMD, ATU_NO_QUIRK }, 128 { USB_VENDOR_LINKSYS2, USB_PRODUCT_LINKSYS2_WUSB11, 129 RadioRFMD, ATU_NO_QUIRK }, 130 { USB_VENDOR_LINKSYS3, USB_PRODUCT_LINKSYS3_WUSB11V28, 131 RadioRFMD2958, ATU_NO_QUIRK }, 132 { USB_VENDOR_NETGEAR2, USB_PRODUCT_NETGEAR2_MA101B, 133 RadioRFMD, ATU_NO_QUIRK }, 134 { USB_VENDOR_ACERP, USB_PRODUCT_ACERP_AWL400, 135 RadioRFMD, ATU_NO_QUIRK }, 136 { USB_VENDOR_ATMEL, USB_PRODUCT_ATMEL_WL1130, 137 RadioRFMD2958, ATU_NO_QUIRK }, 138 { USB_VENDOR_LINKSYS3, USB_PRODUCT_LINKSYS3_WUSB11V28, 139 RadioRFMD2958, ATU_NO_QUIRK }, 140 { USB_VENDOR_AINCOMM, USB_PRODUCT_AINCOMM_AWU2000B, 141 RadioRFMD2958, ATU_NO_QUIRK }, 142 /* SMC2662 V.4 */ 143 { USB_VENDOR_ATMEL, USB_PRODUCT_ATMEL_AT76C505A, 144 RadioRFMD2958_SMC, ATU_QUIRK_NO_REMAP | ATU_QUIRK_FW_DELAY }, 145 { USB_VENDOR_ACERP, USB_PRODUCT_ACERP_AWL300, 146 RadioIntersil, ATU_NO_QUIRK }, 147 { USB_VENDOR_OQO, USB_PRODUCT_OQO_WIFI01, 148 RadioRFMD2958_SMC, ATU_QUIRK_NO_REMAP | ATU_QUIRK_FW_DELAY }, 149 { USB_VENDOR_SMC3, USB_PRODUCT_SMC3_2662WV1, 150 RadioIntersil, ATU_NO_QUIRK }, 151 }; 152 153 struct atu_radfirm { 154 enum atu_radio_type atur_type; 155 unsigned char *atur_internal; 156 size_t atur_internal_sz; 157 unsigned char *atur_external; 158 size_t atur_external_sz; 159 } atu_radfirm[] = { 160 { RadioRFMD, 161 atmel_fw_rfmd_int, sizeof(atmel_fw_rfmd_int), 162 atmel_fw_rfmd_ext, sizeof(atmel_fw_rfmd_ext) }, 163 { RadioRFMD2958, 164 atmel_fw_rfmd2958_int, sizeof(atmel_fw_rfmd2958_int), 165 atmel_fw_rfmd2958_ext, sizeof(atmel_fw_rfmd2958_ext) }, 166 { RadioRFMD2958_SMC, 167 atmel_fw_rfmd2958_smc_int, sizeof(atmel_fw_rfmd2958_smc_int), 168 atmel_fw_rfmd2958_smc_ext, sizeof(atmel_fw_rfmd2958_smc_ext) }, 169 { RadioIntersil, 170 atmel_fw_intersil_int, sizeof(atmel_fw_intersil_int), 171 atmel_fw_intersil_ext, sizeof(atmel_fw_intersil_ext) } 172 }; 173 174 int atu_newbuf(struct atu_softc *, struct atu_chain *, struct mbuf *); 175 void atu_rxeof(usbd_xfer_handle, usbd_private_handle, usbd_status); 176 void atu_txeof(usbd_xfer_handle, usbd_private_handle, usbd_status); 177 void atu_start(struct ifnet *); 178 int atu_ioctl(struct ifnet *, u_long, void *); 179 int atu_init(struct ifnet *); 180 void atu_stop(struct ifnet *, int); 181 void atu_watchdog(struct ifnet *); 182 usbd_status atu_usb_request(struct atu_softc *sc, u_int8_t type, 183 u_int8_t request, u_int16_t value, u_int16_t index, 184 u_int16_t length, u_int8_t *data); 185 int atu_send_command(struct atu_softc *sc, u_int8_t *command, int size); 186 int atu_get_cmd_status(struct atu_softc *sc, u_int8_t cmd, 187 u_int8_t *status); 188 int atu_wait_completion(struct atu_softc *sc, u_int8_t cmd, 189 u_int8_t *status); 190 int atu_send_mib(struct atu_softc *sc, u_int8_t type, 191 u_int8_t size, u_int8_t index, void *data); 192 int atu_get_mib(struct atu_softc *sc, u_int8_t type, 193 u_int8_t size, u_int8_t index, u_int8_t *buf); 194 #if 0 195 int atu_start_ibss(struct atu_softc *sc); 196 #endif 197 int atu_start_scan(struct atu_softc *sc); 198 int atu_switch_radio(struct atu_softc *sc, int state); 199 int atu_initial_config(struct atu_softc *sc); 200 int atu_join(struct atu_softc *sc, struct ieee80211_node *node); 201 int8_t atu_get_dfu_state(struct atu_softc *sc); 202 u_int8_t atu_get_opmode(struct atu_softc *sc, u_int8_t *mode); 203 void atu_internal_firmware(device_t); 204 void atu_external_firmware(device_t); 205 int atu_get_card_config(struct atu_softc *sc); 206 int atu_media_change(struct ifnet *ifp); 207 void atu_media_status(struct ifnet *ifp, struct ifmediareq *req); 208 int atu_tx_list_init(struct atu_softc *); 209 int atu_rx_list_init(struct atu_softc *); 210 void atu_xfer_list_free(struct atu_softc *sc, struct atu_chain *ch, 211 int listlen); 212 213 #ifdef ATU_DEBUG 214 void atu_debug_print(struct atu_softc *sc); 215 #endif 216 217 void atu_task(void *); 218 int atu_newstate(struct ieee80211com *, enum ieee80211_state, int); 219 int atu_tx_start(struct atu_softc *, struct ieee80211_node *, 220 struct atu_chain *, struct mbuf *); 221 void atu_complete_attach(struct atu_softc *); 222 u_int8_t atu_calculate_padding(int); 223 224 USB_DECLARE_DRIVER(atu); 225 226 usbd_status 227 atu_usb_request(struct atu_softc *sc, u_int8_t type, 228 u_int8_t request, u_int16_t value, u_int16_t index, u_int16_t length, 229 u_int8_t *data) 230 { 231 usb_device_request_t req; 232 usbd_xfer_handle xfer; 233 usbd_status err; 234 int total_len = 0, s; 235 236 req.bmRequestType = type; 237 req.bRequest = request; 238 USETW(req.wValue, value); 239 USETW(req.wIndex, index); 240 USETW(req.wLength, length); 241 242 #ifdef ATU_DEBUG 243 if (atudebug) { 244 DPRINTFN(20, ("%s: req=%02x val=%02x ind=%02x " 245 "len=%02x\n", USBDEVNAME(sc->atu_dev), request, 246 value, index, length)); 247 } 248 #endif /* ATU_DEBUG */ 249 250 s = splnet(); 251 252 xfer = usbd_alloc_xfer(sc->atu_udev); 253 usbd_setup_default_xfer(xfer, sc->atu_udev, 0, 500000, &req, data, 254 length, USBD_SHORT_XFER_OK, 0); 255 256 err = usbd_sync_transfer(xfer); 257 258 usbd_get_xfer_status(xfer, NULL, NULL, &total_len, NULL); 259 260 #ifdef ATU_DEBUG 261 if (atudebug) { 262 if (type & UT_READ) { 263 DPRINTFN(20, ("%s: transfered 0x%x bytes in\n", 264 USBDEVNAME(sc->atu_dev), total_len)); 265 } else { 266 if (total_len != length) 267 DPRINTF(("%s: wrote only %x bytes\n", 268 USBDEVNAME(sc->atu_dev), total_len)); 269 } 270 } 271 #endif /* ATU_DEBUG */ 272 273 usbd_free_xfer(xfer); 274 275 splx(s); 276 return(err); 277 } 278 279 int 280 atu_send_command(struct atu_softc *sc, u_int8_t *command, int size) 281 { 282 return atu_usb_request(sc, UT_WRITE_VENDOR_DEVICE, 0x0e, 0x0000, 283 0x0000, size, command); 284 } 285 286 int 287 atu_get_cmd_status(struct atu_softc *sc, u_int8_t cmd, u_int8_t *status) 288 { 289 /* 290 * all other drivers (including Windoze) request 40 bytes of status 291 * and get a short-xfer of just 6 bytes. we can save 34 bytes of 292 * buffer if we just request those 6 bytes in the first place :) 293 */ 294 /* 295 return atu_usb_request(sc, UT_READ_VENDOR_INTERFACE, 0x22, cmd, 296 0x0000, 40, status); 297 */ 298 return atu_usb_request(sc, UT_READ_VENDOR_INTERFACE, 0x22, cmd, 299 0x0000, 6, status); 300 } 301 302 int 303 atu_wait_completion(struct atu_softc *sc, u_int8_t cmd, u_int8_t *status) 304 { 305 int idle_count = 0, err; 306 u_int8_t statusreq[6]; 307 308 DPRINTFN(15, ("%s: wait-completion: cmd=%02x\n", 309 USBDEVNAME(sc->atu_dev), cmd)); 310 311 while (1) { 312 err = atu_get_cmd_status(sc, cmd, statusreq); 313 if (err) 314 return err; 315 316 #ifdef ATU_DEBUG 317 if (atudebug) { 318 DPRINTFN(20, ("%s: status=%s cmd=%02x\n", 319 USBDEVNAME(sc->atu_dev), 320 ether_sprintf(statusreq), cmd)); 321 } 322 #endif /* ATU_DEBUG */ 323 324 /* 325 * during normal operations waiting on STATUS_IDLE 326 * will never happen more than once 327 */ 328 if ((statusreq[5] == STATUS_IDLE) && (idle_count++ > 20)) { 329 DPRINTF(("%s: idle_count > 20!\n", 330 USBDEVNAME(sc->atu_dev))); 331 return 0; 332 } 333 334 if ((statusreq[5] != STATUS_IN_PROGRESS) && 335 (statusreq[5] != STATUS_IDLE)) { 336 if (status != NULL) 337 *status = statusreq[5]; 338 return 0; 339 } 340 usbd_delay_ms(sc->atu_udev, 25); 341 } 342 } 343 344 int 345 atu_send_mib(struct atu_softc *sc, u_int8_t type, u_int8_t size, 346 u_int8_t index, void *data) 347 { 348 int err; 349 struct atu_cmd_set_mib request; 350 351 /* 352 * We don't construct a MIB packet first and then memcpy it into an 353 * Atmel-command-packet, we just construct it the right way at once :) 354 */ 355 356 memset(&request, 0, sizeof(request)); 357 358 request.AtCmd = CMD_SET_MIB; 359 USETW(request.AtSize, size + 4); 360 361 request.MIBType = type; 362 request.MIBSize = size; 363 request.MIBIndex = index; 364 request.MIBReserved = 0; 365 366 /* 367 * For 1 and 2 byte requests we assume a direct value, 368 * everything bigger than 2 bytes we assume a pointer to the data 369 */ 370 switch (size) { 371 case 0: 372 break; 373 case 1: 374 request.data[0]=(long)data & 0x000000ff; 375 break; 376 case 2: 377 request.data[0]=(long)data & 0x000000ff; 378 request.data[1]=(long)data >> 8; 379 break; 380 default: 381 memcpy(request.data, data, size); 382 break; 383 } 384 385 err = atu_usb_request(sc, UT_WRITE_VENDOR_DEVICE, 0x0e, 0x0000, 386 0x0000, size+8, (uByte *)&request); 387 if (err) 388 return (err); 389 390 DPRINTFN(15, ("%s: sendmib : waitcompletion...\n", 391 USBDEVNAME(sc->atu_dev))); 392 return atu_wait_completion(sc, CMD_SET_MIB, NULL); 393 } 394 395 int 396 atu_get_mib(struct atu_softc *sc, u_int8_t type, u_int8_t size, 397 u_int8_t index, u_int8_t *buf) 398 { 399 400 /* linux/at76c503.c - 478 */ 401 return atu_usb_request(sc, UT_READ_VENDOR_INTERFACE, 0x033, 402 type << 8, index, size, buf); 403 } 404 405 #if 0 406 int 407 atu_start_ibss(struct atu_softc *sc) 408 { 409 struct ieee80211com *ic = &sc->sc_ic; 410 int err; 411 struct atu_cmd_start_ibss Request; 412 413 Request.Cmd = CMD_START_IBSS; 414 Request.Reserved = 0; 415 Request.Size = sizeof(Request) - 4; 416 417 memset(Request.BSSID, 0x00, sizeof(Request.BSSID)); 418 memset(Request.SSID, 0x00, sizeof(Request.SSID)); 419 memcpy(Request.SSID, ic->ic_des_ssid, ic->ic_des_ssidlen); 420 Request.SSIDSize = ic->ic_des_ssidlen; 421 if (sc->atu_desired_channel != IEEE80211_CHAN_ANY) 422 Request.Channel = (u_int8_t)sc->atu_desired_channel; 423 else 424 Request.Channel = ATU_DEFAULT_CHANNEL; 425 Request.BSSType = AD_HOC_MODE; 426 memset(Request.Res, 0x00, sizeof(Request.Res)); 427 428 /* Write config to adapter */ 429 err = atu_send_command(sc, (u_int8_t *)&Request, sizeof(Request)); 430 if (err) { 431 DPRINTF(("%s: start ibss failed!\n", 432 USBDEVNAME(sc->atu_dev))); 433 return err; 434 } 435 436 /* Wait for the adapter to do it's thing */ 437 err = atu_wait_completion(sc, CMD_START_IBSS, NULL); 438 if (err) { 439 DPRINTF(("%s: error waiting for start_ibss\n", 440 USBDEVNAME(sc->atu_dev))); 441 return err; 442 } 443 444 /* Get the current BSSID */ 445 err = atu_get_mib(sc, MIB_MAC_MGMT__CURRENT_BSSID, sc->atu_bssid); 446 if (err) { 447 DPRINTF(("%s: could not get BSSID!\n", 448 USBDEVNAME(sc->atu_dev))); 449 return err; 450 } 451 452 DPRINTF(("%s: started a new IBSS (BSSID=%s)\n", 453 USBDEVNAME(sc->atu_dev), ether_sprintf(sc->atu_bssid))); 454 return 0; 455 } 456 #endif 457 458 int 459 atu_start_scan(struct atu_softc *sc) 460 { 461 struct ieee80211com *ic = &sc->sc_ic; 462 struct atu_cmd_do_scan Scan; 463 usbd_status err; 464 int Cnt; 465 466 memset(&Scan, 0, sizeof(Scan)); 467 468 Scan.Cmd = CMD_START_SCAN; 469 Scan.Reserved = 0; 470 USETW(Scan.Size, sizeof(Scan) - 4); 471 472 /* use the broadcast BSSID (in active scan) */ 473 for (Cnt=0; Cnt<6; Cnt++) 474 Scan.BSSID[Cnt] = 0xff; 475 476 memset(Scan.SSID, 0x00, sizeof(Scan.SSID)); 477 memcpy(Scan.SSID, ic->ic_des_essid, ic->ic_des_esslen); 478 Scan.SSID_Len = ic->ic_des_esslen; 479 480 /* default values for scan */ 481 Scan.ScanType = ATU_SCAN_ACTIVE; 482 if (sc->atu_desired_channel != IEEE80211_CHAN_ANY) 483 Scan.Channel = (u_int8_t)sc->atu_desired_channel; 484 else 485 Scan.Channel = sc->atu_channel; 486 487 ic->ic_curchan = &ic->ic_channels[Scan.Channel]; 488 489 /* we like scans to be quick :) */ 490 /* the time we wait before sending probe's */ 491 USETW(Scan.ProbeDelay, 0); 492 /* the time we stay on one channel */ 493 USETW(Scan.MinChannelTime, 100); 494 USETW(Scan.MaxChannelTime, 200); 495 /* wether or not we scan all channels */ 496 Scan.InternationalScan = 0xc1; 497 498 #ifdef ATU_DEBUG 499 if (atudebug) { 500 DPRINTFN(20, ("%s: scan cmd len=%02zx\n", 501 USBDEVNAME(sc->atu_dev), sizeof(Scan))); 502 } 503 #endif /* ATU_DEBUG */ 504 505 /* Write config to adapter */ 506 err = atu_send_command(sc, (u_int8_t *)&Scan, sizeof(Scan)); 507 if (err) 508 return err; 509 510 /* 511 * We don't wait for the command to finish... the mgmt-thread will do 512 * that for us 513 */ 514 /* 515 err = atu_wait_completion(sc, CMD_START_SCAN, NULL); 516 if (err) 517 return err; 518 */ 519 return 0; 520 } 521 522 int 523 atu_switch_radio(struct atu_softc *sc, int state) 524 { 525 usbd_status err; 526 struct atu_cmd CmdRadio; 527 528 if (sc->atu_radio == RadioIntersil) { 529 /* 530 * Intersil doesn't seem to need/support switching the radio 531 * on/off 532 */ 533 return 0; 534 } 535 536 memset(&CmdRadio, 0, sizeof(CmdRadio)); 537 CmdRadio.Cmd = CMD_RADIO_ON; 538 539 if (sc->atu_radio_on != state) { 540 if (state == 0) 541 CmdRadio.Cmd = CMD_RADIO_OFF; 542 543 err = atu_send_command(sc, (u_int8_t *)&CmdRadio, 544 sizeof(CmdRadio)); 545 if (err) 546 return err; 547 548 err = atu_wait_completion(sc, CmdRadio.Cmd, NULL); 549 if (err) 550 return err; 551 552 DPRINTFN(10, ("%s: radio turned %s\n", 553 USBDEVNAME(sc->atu_dev), state ? "on" : "off")); 554 sc->atu_radio_on = state; 555 } 556 return 0; 557 } 558 559 int 560 atu_initial_config(struct atu_softc *sc) 561 { 562 struct ieee80211com *ic = &sc->sc_ic; 563 u_int32_t i; 564 usbd_status err; 565 /* u_int8_t rates[4] = {0x82, 0x84, 0x8B, 0x96};*/ 566 u_int8_t rates[4] = {0x82, 0x04, 0x0B, 0x16}; 567 struct atu_cmd_card_config cmd; 568 u_int8_t reg_domain; 569 570 DPRINTFN(10, ("%s: sending mac-addr\n", USBDEVNAME(sc->atu_dev))); 571 err = atu_send_mib(sc, MIB_MAC_ADDR__ADDR, ic->ic_myaddr); 572 if (err) { 573 DPRINTF(("%s: error setting mac-addr\n", 574 USBDEVNAME(sc->atu_dev))); 575 return err; 576 } 577 578 /* 579 DPRINTF(("%s: sending reg-domain\n", USBDEVNAME(sc->atu_dev))); 580 err = atu_send_mib(sc, MIB_PHY__REG_DOMAIN, NR(0x30)); 581 if (err) { 582 DPRINTF(("%s: error setting mac-addr\n", 583 USBDEVNAME(sc->atu_dev))); 584 return err; 585 } 586 */ 587 588 memset(&cmd, 0, sizeof(cmd)); 589 cmd.Cmd = CMD_STARTUP; 590 cmd.Reserved = 0; 591 USETW(cmd.Size, sizeof(cmd) - 4); 592 593 if (sc->atu_desired_channel != IEEE80211_CHAN_ANY) 594 cmd.Channel = (u_int8_t)sc->atu_desired_channel; 595 else 596 cmd.Channel = sc->atu_channel; 597 cmd.AutoRateFallback = 1; 598 memcpy(cmd.BasicRateSet, rates, 4); 599 600 /* ShortRetryLimit should be 7 according to 802.11 spec */ 601 cmd.ShortRetryLimit = 7; 602 USETW(cmd.RTS_Threshold, 2347); 603 USETW(cmd.FragThreshold, 2346); 604 605 /* Doesn't seem to work, but we'll set it to 1 anyway */ 606 cmd.PromiscuousMode = 1; 607 608 /* this goes into the beacon we transmit */ 609 if (ic->ic_flags & IEEE80211_F_PRIVACY) 610 cmd.PrivacyInvoked = 1; 611 else 612 cmd.PrivacyInvoked = 0; 613 614 cmd.ExcludeUnencrypted = 0; 615 616 if (ic->ic_flags & IEEE80211_F_PRIVACY) { 617 switch (ic->ic_nw_keys[ic->ic_def_txkey].wk_keylen) { 618 case 5: 619 cmd.EncryptionType = ATU_WEP_40BITS; 620 break; 621 case 13: 622 cmd.EncryptionType = ATU_WEP_104BITS; 623 break; 624 default: 625 cmd.EncryptionType = ATU_WEP_OFF; 626 break; 627 } 628 629 630 cmd.WEP_DefaultKeyID = ic->ic_def_txkey; 631 for (i = 0; i < IEEE80211_WEP_NKID; i++) { 632 memcpy(cmd.WEP_DefaultKey[i], ic->ic_nw_keys[i].wk_key, 633 ic->ic_nw_keys[i].wk_keylen); 634 } 635 } 636 637 /* Setting the SSID here doesn't seem to do anything */ 638 memset(cmd.SSID, 0x00, sizeof(cmd.SSID)); 639 memcpy(cmd.SSID, ic->ic_des_essid, ic->ic_des_esslen); 640 cmd.SSID_Len = ic->ic_des_esslen; 641 642 cmd.ShortPreamble = 0; 643 USETW(cmd.BeaconPeriod, 100); 644 /* cmd.BeaconPeriod = 65535; */ 645 646 /* 647 * TODO: 648 * read reg domain MIB_PHY @ 0x17 (1 byte), (reply = 0x30) 649 * we should do something usefull with this info. right now it's just 650 * ignored 651 */ 652 err = atu_get_mib(sc, MIB_PHY__REG_DOMAIN, ®_domain); 653 if (err) { 654 DPRINTF(("%s: could not get regdomain!\n", 655 USBDEVNAME(sc->atu_dev))); 656 } else { 657 DPRINTF(("%s: in reg domain 0x%x according to the " 658 "adapter\n", USBDEVNAME(sc->atu_dev), reg_domain)); 659 } 660 661 #ifdef ATU_DEBUG 662 if (atudebug) { 663 DPRINTFN(20, ("%s: configlen=%02zx\n", USBDEVNAME(sc->atu_dev), 664 sizeof(cmd))); 665 } 666 #endif /* ATU_DEBUG */ 667 668 /* Windoze : driver says exclude-unencrypted=1 & encr-type=1 */ 669 670 err = atu_send_command(sc, (u_int8_t *)&cmd, sizeof(cmd)); 671 if (err) 672 return err; 673 err = atu_wait_completion(sc, CMD_STARTUP, NULL); 674 if (err) 675 return err; 676 677 /* Turn on radio now */ 678 err = atu_switch_radio(sc, 1); 679 if (err) 680 return err; 681 682 /* preamble type = short */ 683 err = atu_send_mib(sc, MIB_LOCAL__PREAMBLE, NR(PREAMBLE_SHORT)); 684 if (err) 685 return err; 686 687 /* frag = 1536 */ 688 err = atu_send_mib(sc, MIB_MAC__FRAG, NR(2346)); 689 if (err) 690 return err; 691 692 /* rts = 1536 */ 693 err = atu_send_mib(sc, MIB_MAC__RTS, NR(2347)); 694 if (err) 695 return err; 696 697 /* auto rate fallback = 1 */ 698 err = atu_send_mib(sc, MIB_LOCAL__AUTO_RATE_FALLBACK, NR(1)); 699 if (err) 700 return err; 701 702 /* power mode = full on, no power saving */ 703 err = atu_send_mib(sc, MIB_MAC_MGMT__POWER_MODE, 704 NR(POWER_MODE_ACTIVE)); 705 if (err) 706 return err; 707 708 DPRINTFN(10, ("%s: completed initial config\n", 709 USBDEVNAME(sc->atu_dev))); 710 return 0; 711 } 712 713 int 714 atu_join(struct atu_softc *sc, struct ieee80211_node *node) 715 { 716 struct atu_cmd_join join; 717 u_int8_t status = 0; /* XXX: GCC */ 718 usbd_status err; 719 720 memset(&join, 0, sizeof(join)); 721 722 join.Cmd = CMD_JOIN; 723 join.Reserved = 0x00; 724 USETW(join.Size, sizeof(join) - 4); 725 726 DPRINTFN(15, ("%s: pre-join sc->atu_bssid=%s\n", 727 USBDEVNAME(sc->atu_dev), ether_sprintf(sc->atu_bssid))); 728 DPRINTFN(15, ("%s: mode=%d\n", USBDEVNAME(sc->atu_dev), 729 sc->atu_mode)); 730 memcpy(join.bssid, node->ni_bssid, IEEE80211_ADDR_LEN); 731 memset(join.essid, 0x00, 32); 732 memcpy(join.essid, node->ni_essid, node->ni_esslen); 733 join.essid_size = node->ni_esslen; 734 if (node->ni_capinfo & IEEE80211_CAPINFO_IBSS) 735 join.bss_type = AD_HOC_MODE; 736 else 737 join.bss_type = INFRASTRUCTURE_MODE; 738 join.channel = ieee80211_chan2ieee(&sc->sc_ic, node->ni_chan); 739 740 USETW(join.timeout, ATU_JOIN_TIMEOUT); 741 join.reserved = 0x00; 742 743 DPRINTFN(10, ("%s: trying to join BSSID=%s\n", 744 USBDEVNAME(sc->atu_dev), ether_sprintf(join.bssid))); 745 err = atu_send_command(sc, (u_int8_t *)&join, sizeof(join)); 746 if (err) { 747 DPRINTF(("%s: ERROR trying to join IBSS\n", 748 USBDEVNAME(sc->atu_dev))); 749 return err; 750 } 751 err = atu_wait_completion(sc, CMD_JOIN, &status); 752 if (err) { 753 DPRINTF(("%s: error joining BSS!\n", 754 USBDEVNAME(sc->atu_dev))); 755 return err; 756 } 757 if (status != STATUS_COMPLETE) { 758 DPRINTF(("%s: error joining... [status=%02x]\n", 759 USBDEVNAME(sc->atu_dev), status)); 760 return status; 761 } else { 762 DPRINTFN(10, ("%s: joined BSS\n", USBDEVNAME(sc->atu_dev))); 763 } 764 return err; 765 } 766 767 /* 768 * Get the state of the DFU unit 769 */ 770 int8_t 771 atu_get_dfu_state(struct atu_softc *sc) 772 { 773 u_int8_t state; 774 775 if (atu_usb_request(sc, DFU_GETSTATE, 0, 0, 1, &state)) 776 return -1; 777 return state; 778 } 779 780 /* 781 * Get MAC opmode 782 */ 783 u_int8_t 784 atu_get_opmode(struct atu_softc *sc, u_int8_t *mode) 785 { 786 787 return atu_usb_request(sc, UT_READ_VENDOR_INTERFACE, 0x33, 0x0001, 788 0x0000, 1, mode); 789 } 790 791 /* 792 * Upload the internal firmware into the device 793 */ 794 void 795 atu_internal_firmware(device_t arg) 796 { 797 struct atu_softc *sc = device_private(arg); 798 u_char state, *ptr = NULL, *firm = NULL, status[6]; 799 int block_size, block = 0, err, i; 800 size_t bytes_left = 0; 801 802 /* 803 * Uploading firmware is done with the DFU (Device Firmware Upgrade) 804 * interface. See "Universal Serial Bus - Device Class Specification 805 * for Device Firmware Upgrade" pdf for details of the protocol. 806 * Maybe this could be moved to a separate 'firmware driver' once more 807 * device drivers need it... For now we'll just do it here. 808 * 809 * Just for your information, the Atmel's DFU descriptor looks like 810 * this: 811 * 812 * 07 size 813 * 21 type 814 * 01 capabilities : only firmware download, need reset 815 * after download 816 * 13 05 detach timeout : max 1299ms between DFU_DETACH and 817 * reset 818 * 00 04 max bytes of firmware per transaction : 1024 819 */ 820 821 /* Choose the right firmware for the device */ 822 for (i = 0; i < __arraycount(atu_radfirm); i++) 823 if (sc->atu_radio == atu_radfirm[i].atur_type) { 824 firm = atu_radfirm[i].atur_internal; 825 bytes_left = atu_radfirm[i].atur_internal_sz; 826 } 827 828 if (firm == NULL) { 829 aprint_error_dev(arg, "no firmware found\n"); 830 return; 831 } 832 833 ptr = firm; 834 state = atu_get_dfu_state(sc); 835 836 while (block >= 0 && state > 0) { 837 switch (state) { 838 case DFUState_DnLoadSync: 839 /* get DFU status */ 840 err = atu_usb_request(sc, DFU_GETSTATUS, 0, 0 , 6, 841 status); 842 if (err) { 843 DPRINTF(("%s: dfu_getstatus failed!\n", 844 USBDEVNAME(sc->atu_dev))); 845 return; 846 } 847 /* success means state => DnLoadIdle */ 848 state = DFUState_DnLoadIdle; 849 continue; 850 break; 851 852 case DFUState_DFUIdle: 853 case DFUState_DnLoadIdle: 854 if (bytes_left>=DFU_MaxBlockSize) 855 block_size = DFU_MaxBlockSize; 856 else 857 block_size = bytes_left; 858 DPRINTFN(15, ("%s: firmware block %d\n", 859 USBDEVNAME(sc->atu_dev), block)); 860 861 err = atu_usb_request(sc, DFU_DNLOAD, block++, 0, 862 block_size, ptr); 863 if (err) { 864 DPRINTF(("%s: dfu_dnload failed\n", 865 USBDEVNAME(sc->atu_dev))); 866 return; 867 } 868 869 ptr += block_size; 870 bytes_left -= block_size; 871 if (block_size == 0) 872 block = -1; 873 break; 874 875 default: 876 usbd_delay_ms(sc->atu_udev, 100); 877 DPRINTFN(20, ("%s: sleeping for a while\n", 878 USBDEVNAME(sc->atu_dev))); 879 break; 880 } 881 882 state = atu_get_dfu_state(sc); 883 } 884 885 if (state != DFUState_ManifestSync) { 886 DPRINTF(("%s: state != manifestsync... eek!\n", 887 USBDEVNAME(sc->atu_dev))); 888 } 889 890 err = atu_usb_request(sc, DFU_GETSTATUS, 0, 0, 6, status); 891 if (err) { 892 DPRINTF(("%s: dfu_getstatus failed!\n", 893 USBDEVNAME(sc->atu_dev))); 894 return; 895 } 896 897 DPRINTFN(15, ("%s: sending remap\n", USBDEVNAME(sc->atu_dev))); 898 err = atu_usb_request(sc, DFU_REMAP, 0, 0, 0, NULL); 899 if ((err) && (! sc->atu_quirk & ATU_QUIRK_NO_REMAP)) { 900 DPRINTF(("%s: remap failed!\n", USBDEVNAME(sc->atu_dev))); 901 return; 902 } 903 904 /* after a lot of trying and measuring I found out the device needs 905 * about 56 miliseconds after sending the remap command before 906 * it's ready to communicate again. So we'll wait just a little bit 907 * longer than that to be sure... 908 */ 909 usbd_delay_ms(sc->atu_udev, 56+100); 910 911 aprint_error_dev(arg, "reattaching after firmware upload\n"); 912 usb_needs_reattach(sc->atu_udev); 913 } 914 915 void 916 atu_external_firmware(device_t arg) 917 { 918 struct atu_softc *sc = device_private(arg); 919 u_char *ptr = NULL, *firm = NULL; 920 int block_size, block = 0, err, i; 921 size_t bytes_left = 0; 922 923 for (i = 0; i < __arraycount(atu_radfirm); i++) 924 if (sc->atu_radio == atu_radfirm[i].atur_type) { 925 firm = atu_radfirm[i].atur_external; 926 bytes_left = atu_radfirm[i].atur_external_sz; 927 } 928 929 if (firm == NULL) { 930 aprint_error_dev(arg, "no firmware found\n"); 931 return; 932 } 933 ptr = firm; 934 935 while (bytes_left) { 936 if (bytes_left > 1024) 937 block_size = 1024; 938 else 939 block_size = bytes_left; 940 941 DPRINTFN(15, ("%s: block:%d size:%d\n", 942 USBDEVNAME(sc->atu_dev), block, block_size)); 943 err = atu_usb_request(sc, UT_WRITE_VENDOR_DEVICE, 0x0e, 944 0x0802, block, block_size, ptr); 945 if (err) { 946 DPRINTF(("%s: could not load external firmware " 947 "block\n", USBDEVNAME(sc->atu_dev))); 948 return; 949 } 950 951 ptr += block_size; 952 block++; 953 bytes_left -= block_size; 954 } 955 956 err = atu_usb_request(sc, UT_WRITE_VENDOR_DEVICE, 0x0e, 0x0802, 957 block, 0, NULL); 958 if (err) { 959 DPRINTF(("%s: could not load last zero-length firmware " 960 "block\n", USBDEVNAME(sc->atu_dev))); 961 return; 962 } 963 964 /* 965 * The SMC2662w V.4 seems to require some time to do it's thing with 966 * the external firmware... 20 ms isn't enough, but 21 ms works 100 967 * times out of 100 tries. We'll wait a bit longer just to be sure 968 */ 969 if (sc->atu_quirk & ATU_QUIRK_FW_DELAY) 970 usbd_delay_ms(sc->atu_udev, 21 + 100); 971 972 DPRINTFN(10, ("%s: external firmware upload done\n", 973 USBDEVNAME(sc->atu_dev))); 974 /* complete configuration after the firmwares have been uploaded */ 975 atu_complete_attach(sc); 976 } 977 978 int 979 atu_get_card_config(struct atu_softc *sc) 980 { 981 struct ieee80211com *ic = &sc->sc_ic; 982 struct atu_rfmd_conf rfmd_conf; 983 struct atu_intersil_conf intersil_conf; 984 int err; 985 986 switch (sc->atu_radio) { 987 988 case RadioRFMD: 989 case RadioRFMD2958: 990 case RadioRFMD2958_SMC: 991 err = atu_usb_request(sc, UT_READ_VENDOR_INTERFACE, 0x33, 992 0x0a02, 0x0000, sizeof(rfmd_conf), 993 (u_int8_t *)&rfmd_conf); 994 if (err) { 995 DPRINTF(("%s: could not get rfmd config!\n", 996 USBDEVNAME(sc->atu_dev))); 997 return err; 998 } 999 memcpy(ic->ic_myaddr, rfmd_conf.MACAddr, IEEE80211_ADDR_LEN); 1000 break; 1001 1002 case RadioIntersil: 1003 err = atu_usb_request(sc, UT_READ_VENDOR_INTERFACE, 0x33, 1004 0x0902, 0x0000, sizeof(intersil_conf), 1005 (u_int8_t *)&intersil_conf); 1006 if (err) { 1007 DPRINTF(("%s: could not get intersil config!\n", 1008 USBDEVNAME(sc->atu_dev))); 1009 return err; 1010 } 1011 memcpy(ic->ic_myaddr, intersil_conf.MACAddr, 1012 IEEE80211_ADDR_LEN); 1013 break; 1014 } 1015 return 0; 1016 } 1017 1018 /* 1019 * Probe for an AT76c503 chip. 1020 */ 1021 USB_MATCH(atu) 1022 { 1023 USB_MATCH_START(atu, uaa); 1024 int i; 1025 1026 for (i = 0; i < __arraycount(atu_devs); i++) { 1027 struct atu_type *t = &atu_devs[i]; 1028 1029 if (uaa->vendor == t->atu_vid && 1030 uaa->product == t->atu_pid) { 1031 return(UMATCH_VENDOR_PRODUCT); 1032 } 1033 } 1034 return(UMATCH_NONE); 1035 } 1036 1037 int 1038 atu_media_change(struct ifnet *ifp) 1039 { 1040 struct atu_softc *sc = ifp->if_softc; 1041 struct ieee80211com *ic = &sc->sc_ic; 1042 int err, s; 1043 1044 DPRINTFN(10, ("%s: atu_media_change\n", USBDEVNAME(sc->atu_dev))); 1045 1046 err = ieee80211_media_change(ifp); 1047 if (err == ENETRESET) { 1048 if ((ifp->if_flags & (IFF_RUNNING|IFF_UP)) == 1049 (IFF_RUNNING|IFF_UP)) { 1050 s = splnet(); 1051 ieee80211_new_state(ic, IEEE80211_S_INIT, -1); 1052 atu_initial_config(sc); 1053 ieee80211_new_state(ic, IEEE80211_S_SCAN, -1); 1054 splx(s); 1055 } 1056 err = 0; 1057 } 1058 1059 return (err); 1060 } 1061 1062 void 1063 atu_media_status(struct ifnet *ifp, struct ifmediareq *req) 1064 { 1065 #ifdef ATU_DEBUG 1066 struct atu_softc *sc = ifp->if_softc; 1067 #endif /* ATU_DEBUG */ 1068 1069 DPRINTFN(10, ("%s: atu_media_status\n", USBDEVNAME(sc->atu_dev))); 1070 1071 ieee80211_media_status(ifp, req); 1072 } 1073 1074 void 1075 atu_task(void *arg) 1076 { 1077 struct atu_softc *sc = (struct atu_softc *)arg; 1078 struct ieee80211com *ic = &sc->sc_ic; 1079 usbd_status err; 1080 int s; 1081 1082 DPRINTFN(10, ("%s: atu_task\n", USBDEVNAME(sc->atu_dev))); 1083 1084 if (sc->sc_state != ATU_S_OK) 1085 return; 1086 1087 switch (sc->sc_cmd) { 1088 case ATU_C_SCAN: 1089 1090 err = atu_start_scan(sc); 1091 if (err) { 1092 DPRINTFN(1, ("%s: atu_task: couldn't start scan!\n", 1093 USBDEVNAME(sc->atu_dev))); 1094 return; 1095 } 1096 1097 err = atu_wait_completion(sc, CMD_START_SCAN, NULL); 1098 if (err) { 1099 DPRINTF(("%s: atu_task: error waiting for scan\n", 1100 USBDEVNAME(sc->atu_dev))); 1101 return; 1102 } 1103 1104 DPRINTF(("%s: ==========================> END OF SCAN!\n", 1105 USBDEVNAME(sc->atu_dev))); 1106 1107 s = splnet(); 1108 ieee80211_next_scan(ic); 1109 splx(s); 1110 1111 DPRINTF(("%s: ----------------------======> END OF SCAN2!\n", 1112 USBDEVNAME(sc->atu_dev))); 1113 break; 1114 1115 case ATU_C_JOIN: 1116 atu_join(sc, ic->ic_bss); 1117 } 1118 } 1119 1120 int 1121 atu_newstate(struct ieee80211com *ic, enum ieee80211_state nstate, int arg) 1122 { 1123 struct ifnet *ifp = ic->ic_ifp; 1124 struct atu_softc *sc = ifp->if_softc; 1125 enum ieee80211_state ostate = ic->ic_state; 1126 1127 DPRINTFN(10, ("%s: atu_newstate: %s -> %s\n", USBDEVNAME(sc->atu_dev), 1128 ieee80211_state_name[ostate], ieee80211_state_name[nstate])); 1129 1130 switch (nstate) { 1131 case IEEE80211_S_SCAN: 1132 memcpy(ic->ic_chan_scan, ic->ic_chan_active, 1133 sizeof(ic->ic_chan_active)); 1134 ieee80211_node_table_reset(&ic->ic_scan); 1135 1136 /* tell the event thread that we want a scan */ 1137 sc->sc_cmd = ATU_C_SCAN; 1138 usb_add_task(sc->atu_udev, &sc->sc_task, USB_TASKQ_DRIVER); 1139 1140 /* handle this ourselves */ 1141 ic->ic_state = nstate; 1142 return (0); 1143 1144 case IEEE80211_S_AUTH: 1145 case IEEE80211_S_RUN: 1146 if (ostate == IEEE80211_S_SCAN) { 1147 sc->sc_cmd = ATU_C_JOIN; 1148 usb_add_task(sc->atu_udev, &sc->sc_task, 1149 USB_TASKQ_DRIVER); 1150 } 1151 break; 1152 default: 1153 /* nothing to do */ 1154 break; 1155 } 1156 1157 return (*sc->sc_newstate)(ic, nstate, arg); 1158 } 1159 1160 /* 1161 * Attach the interface. Allocate softc structures, do 1162 * setup and ethernet/BPF attach. 1163 */ 1164 USB_ATTACH(atu) 1165 { 1166 USB_ATTACH_START(atu, sc, uaa); 1167 char *devinfop; 1168 usbd_status err; 1169 usbd_device_handle dev = uaa->device; 1170 u_int8_t mode, channel; 1171 int i; 1172 1173 sc->atu_dev = self; 1174 sc->sc_state = ATU_S_UNCONFIG; 1175 1176 devinfop = usbd_devinfo_alloc(dev, 0); 1177 USB_ATTACH_SETUP; 1178 aprint_normal_dev(self, "%s\n", devinfop); 1179 usbd_devinfo_free(devinfop); 1180 1181 err = usbd_set_config_no(dev, ATU_CONFIG_NO, 1); 1182 if (err) { 1183 aprint_error_dev(self, "setting config no failed\n"); 1184 USB_ATTACH_ERROR_RETURN; 1185 } 1186 1187 err = usbd_device2interface_handle(dev, ATU_IFACE_IDX, &sc->atu_iface); 1188 if (err) { 1189 aprint_error_dev(self, "getting interface handle failed\n"); 1190 USB_ATTACH_ERROR_RETURN; 1191 } 1192 1193 sc->atu_unit = device_unit(self); 1194 sc->atu_udev = dev; 1195 1196 /* 1197 * look up the radio_type for the device 1198 * basically does the same as USB_MATCH 1199 */ 1200 for (i = 0; i < __arraycount(atu_devs); i++) { 1201 struct atu_type *t = &atu_devs[i]; 1202 1203 if (uaa->vendor == t->atu_vid && 1204 uaa->product == t->atu_pid) { 1205 sc->atu_radio = t->atu_radio; 1206 sc->atu_quirk = t->atu_quirk; 1207 } 1208 } 1209 1210 /* 1211 * Check in the interface descriptor if we're in DFU mode 1212 * If we're in DFU mode, we upload the external firmware 1213 * If we're not, the PC must have rebooted without power-cycling 1214 * the device.. I've tried this out, a reboot only requeres the 1215 * external firmware to be reloaded :) 1216 * 1217 * Hmm. The at76c505a doesn't report a DFU descriptor when it's 1218 * in DFU mode... Let's just try to get the opmode 1219 */ 1220 err = atu_get_opmode(sc, &mode); 1221 DPRINTFN(20, ("%s: opmode: %d\n", USBDEVNAME(sc->atu_dev), mode)); 1222 if (err || (mode != MODE_NETCARD && mode != MODE_NOFLASHNETCARD)) { 1223 DPRINTF(("%s: starting internal firmware download\n", 1224 USBDEVNAME(sc->atu_dev))); 1225 1226 atu_internal_firmware(sc->atu_dev); 1227 /* 1228 * atu_internal_firmware will cause a reset of the device 1229 * so we don't want to do any more configuration after this 1230 * point. 1231 */ 1232 USB_ATTACH_SUCCESS_RETURN; 1233 } 1234 1235 if (mode != MODE_NETCARD) { 1236 DPRINTFN(15, ("%s: device needs external firmware\n", 1237 USBDEVNAME(sc->atu_dev))); 1238 1239 if (mode != MODE_NOFLASHNETCARD) { 1240 DPRINTF(("%s: unexpected opmode=%d\n", 1241 USBDEVNAME(sc->atu_dev), mode)); 1242 } 1243 1244 /* 1245 * There is no difference in opmode before and after external 1246 * firmware upload with the SMC2662 V.4 . So instead we'll try 1247 * to read the channel number. If we succeed, external 1248 * firmwaremust have been already uploaded... 1249 */ 1250 if (sc->atu_radio != RadioIntersil) { 1251 err = atu_get_mib(sc, MIB_PHY__CHANNEL, &channel); 1252 if (!err) { 1253 DPRINTF(("%s: external firmware has already" 1254 " been downloaded\n", 1255 USBDEVNAME(sc->atu_dev))); 1256 atu_complete_attach(sc); 1257 USB_ATTACH_SUCCESS_RETURN; 1258 } 1259 } 1260 1261 atu_external_firmware(sc->atu_dev); 1262 1263 /* 1264 * atu_external_firmware will call atu_complete_attach after 1265 * it's finished so we can just return. 1266 */ 1267 } else { 1268 /* all the firmwares are in place, so complete the attach */ 1269 atu_complete_attach(sc); 1270 } 1271 1272 USB_ATTACH_SUCCESS_RETURN; 1273 } 1274 1275 void 1276 atu_complete_attach(struct atu_softc *sc) 1277 { 1278 struct ieee80211com *ic = &sc->sc_ic; 1279 struct ifnet *ifp = &sc->sc_if; 1280 usb_interface_descriptor_t *id; 1281 usb_endpoint_descriptor_t *ed; 1282 usbd_status err; 1283 int i; 1284 #ifdef ATU_DEBUG 1285 struct atu_fw fw; 1286 #endif 1287 1288 id = usbd_get_interface_descriptor(sc->atu_iface); 1289 1290 /* Find endpoints. */ 1291 for (i = 0; i < id->bNumEndpoints; i++) { 1292 ed = usbd_interface2endpoint_descriptor(sc->atu_iface, i); 1293 if (!ed) { 1294 DPRINTF(("%s: num_endp:%d\n", USBDEVNAME(sc->atu_dev), 1295 sc->atu_iface->idesc->bNumEndpoints)); 1296 DPRINTF(("%s: couldn't get ep %d\n", 1297 USBDEVNAME(sc->atu_dev), i)); 1298 return; 1299 } 1300 if (UE_GET_DIR(ed->bEndpointAddress) == UE_DIR_IN && 1301 UE_GET_XFERTYPE(ed->bmAttributes) == UE_BULK) { 1302 sc->atu_ed[ATU_ENDPT_RX] = ed->bEndpointAddress; 1303 } else if (UE_GET_DIR(ed->bEndpointAddress) == UE_DIR_OUT && 1304 UE_GET_XFERTYPE(ed->bmAttributes) == UE_BULK) { 1305 sc->atu_ed[ATU_ENDPT_TX] = ed->bEndpointAddress; 1306 } 1307 } 1308 1309 /* read device config & get MAC address */ 1310 err = atu_get_card_config(sc); 1311 if (err) { 1312 aprint_error("\n%s: could not get card cfg!\n", 1313 USBDEVNAME(sc->atu_dev)); 1314 return; 1315 } 1316 1317 #ifdef ATU_DEBUG 1318 /* DEBUG : try to get firmware version */ 1319 err = atu_get_mib(sc, MIB_FW_VERSION, sizeof(fw), 0, (u_int8_t *)&fw); 1320 if (!err) { 1321 DPRINTFN(15, ("%s: firmware: maj:%d min:%d patch:%d " 1322 "build:%d\n", USBDEVNAME(sc->atu_dev), fw.major, fw.minor, 1323 fw.patch, fw.build)); 1324 } else { 1325 DPRINTF(("%s: get firmware version failed\n", 1326 USBDEVNAME(sc->atu_dev))); 1327 } 1328 #endif /* ATU_DEBUG */ 1329 1330 /* Show the world our MAC address */ 1331 aprint_normal_dev(sc->atu_dev, "MAC address %s\n", 1332 ether_sprintf(ic->ic_myaddr)); 1333 1334 sc->atu_cdata.atu_tx_inuse = 0; 1335 sc->atu_encrypt = ATU_WEP_OFF; 1336 sc->atu_wepkeylen = ATU_WEP_104BITS; 1337 sc->atu_wepkey = 0; 1338 1339 bzero(sc->atu_bssid, ETHER_ADDR_LEN); 1340 sc->atu_channel = ATU_DEFAULT_CHANNEL; 1341 sc->atu_desired_channel = IEEE80211_CHAN_ANY; 1342 sc->atu_mode = INFRASTRUCTURE_MODE; 1343 1344 ic->ic_ifp = ifp; 1345 ic->ic_phytype = IEEE80211_T_DS; 1346 ic->ic_opmode = IEEE80211_M_STA; 1347 ic->ic_state = IEEE80211_S_INIT; 1348 #ifdef FIXME 1349 ic->ic_caps = IEEE80211_C_IBSS | IEEE80211_C_WEP | IEEE80211_C_SCANALL; 1350 #else 1351 ic->ic_caps = IEEE80211_C_IBSS | IEEE80211_C_WEP; 1352 #endif 1353 1354 i = 0; 1355 ic->ic_sup_rates[IEEE80211_MODE_11B].rs_rates[i++] = 2; 1356 ic->ic_sup_rates[IEEE80211_MODE_11B].rs_rates[i++] = 4; 1357 ic->ic_sup_rates[IEEE80211_MODE_11B].rs_rates[i++] = 11; 1358 ic->ic_sup_rates[IEEE80211_MODE_11B].rs_rates[i++] = 22; 1359 ic->ic_sup_rates[IEEE80211_MODE_11B].rs_nrates = i; 1360 1361 for (i = 1; i <= 14; i++) { 1362 ic->ic_channels[i].ic_flags = IEEE80211_CHAN_B | 1363 IEEE80211_CHAN_PASSIVE; 1364 ic->ic_channels[i].ic_freq = ieee80211_ieee2mhz(i, 1365 ic->ic_channels[i].ic_flags); 1366 } 1367 1368 ic->ic_ibss_chan = &ic->ic_channels[0]; 1369 1370 ifp->if_softc = sc; 1371 memcpy(ifp->if_xname, USBDEVNAME(sc->atu_dev), IFNAMSIZ); 1372 ifp->if_flags = IFF_BROADCAST | IFF_SIMPLEX | IFF_MULTICAST; 1373 ifp->if_init = atu_init; 1374 ifp->if_stop = atu_stop; 1375 ifp->if_start = atu_start; 1376 ifp->if_ioctl = atu_ioctl; 1377 ifp->if_watchdog = atu_watchdog; 1378 ifp->if_mtu = ATU_DEFAULT_MTU; 1379 IFQ_SET_READY(&ifp->if_snd); 1380 1381 /* Call MI attach routine. */ 1382 if_attach(ifp); 1383 ieee80211_ifattach(ic); 1384 1385 sc->sc_newstate = ic->ic_newstate; 1386 ic->ic_newstate = atu_newstate; 1387 1388 /* setup ifmedia interface */ 1389 ieee80211_media_init(ic, atu_media_change, atu_media_status); 1390 1391 usb_init_task(&sc->sc_task, atu_task, sc); 1392 1393 sc->sc_state = ATU_S_OK; 1394 } 1395 1396 USB_DETACH(atu) 1397 { 1398 USB_DETACH_START(atu, sc); 1399 struct ifnet *ifp = &sc->sc_if; 1400 1401 DPRINTFN(10, ("%s: atu_detach state=%d\n", USBDEVNAME(sc->atu_dev), 1402 sc->sc_state)); 1403 1404 if (sc->sc_state != ATU_S_UNCONFIG) { 1405 atu_stop(ifp, 1); 1406 1407 ieee80211_ifdetach(&sc->sc_ic); 1408 if_detach(ifp); 1409 } 1410 1411 return(0); 1412 } 1413 1414 int 1415 atu_activate(device_ptr_t self, enum devact act) 1416 { 1417 struct atu_softc *sc = device_private(self); 1418 1419 switch (act) { 1420 case DVACT_ACTIVATE: 1421 return (EOPNOTSUPP); 1422 break; 1423 case DVACT_DEACTIVATE: 1424 if (sc->sc_state != ATU_S_UNCONFIG) { 1425 if_deactivate(&sc->atu_ec.ec_if); 1426 sc->sc_state = ATU_S_DEAD; 1427 } 1428 break; 1429 } 1430 return (0); 1431 } 1432 1433 /* 1434 * Initialize an RX descriptor and attach an MBUF cluster. 1435 */ 1436 int 1437 atu_newbuf(struct atu_softc *sc, struct atu_chain *c, struct mbuf *m) 1438 { 1439 struct mbuf *m_new = NULL; 1440 1441 if (m == NULL) { 1442 MGETHDR(m_new, M_DONTWAIT, MT_DATA); 1443 if (m_new == NULL) { 1444 DPRINTF(("%s: no memory for rx list\n", 1445 USBDEVNAME(sc->atu_dev))); 1446 return(ENOBUFS); 1447 } 1448 1449 MCLGET(m_new, M_DONTWAIT); 1450 if (!(m_new->m_flags & M_EXT)) { 1451 DPRINTF(("%s: no memory for rx list\n", 1452 USBDEVNAME(sc->atu_dev))); 1453 m_freem(m_new); 1454 return(ENOBUFS); 1455 } 1456 m_new->m_len = m_new->m_pkthdr.len = MCLBYTES; 1457 } else { 1458 m_new = m; 1459 m_new->m_len = m_new->m_pkthdr.len = MCLBYTES; 1460 m_new->m_data = m_new->m_ext.ext_buf; 1461 } 1462 c->atu_mbuf = m_new; 1463 return(0); 1464 } 1465 1466 int 1467 atu_rx_list_init(struct atu_softc *sc) 1468 { 1469 struct atu_cdata *cd = &sc->atu_cdata; 1470 struct atu_chain *c; 1471 int i; 1472 1473 DPRINTFN(15, ("%s: atu_rx_list_init: enter\n", 1474 USBDEVNAME(sc->atu_dev))); 1475 1476 for (i = 0; i < ATU_RX_LIST_CNT; i++) { 1477 c = &cd->atu_rx_chain[i]; 1478 c->atu_sc = sc; 1479 c->atu_idx = i; 1480 if (c->atu_xfer == NULL) { 1481 c->atu_xfer = usbd_alloc_xfer(sc->atu_udev); 1482 if (c->atu_xfer == NULL) 1483 return (ENOBUFS); 1484 c->atu_buf = usbd_alloc_buffer(c->atu_xfer, 1485 ATU_RX_BUFSZ); 1486 if (c->atu_buf == NULL) /* XXX free xfer */ 1487 return (ENOBUFS); 1488 if (atu_newbuf(sc, c, NULL) == ENOBUFS) /* XXX free? */ 1489 return(ENOBUFS); 1490 } 1491 } 1492 return (0); 1493 } 1494 1495 int 1496 atu_tx_list_init(struct atu_softc *sc) 1497 { 1498 struct atu_cdata *cd = &sc->atu_cdata; 1499 struct atu_chain *c; 1500 int i; 1501 1502 DPRINTFN(15, ("%s: atu_tx_list_init\n", 1503 USBDEVNAME(sc->atu_dev))); 1504 1505 SLIST_INIT(&cd->atu_tx_free); 1506 sc->atu_cdata.atu_tx_inuse = 0; 1507 1508 for (i = 0; i < ATU_TX_LIST_CNT; i++) { 1509 c = &cd->atu_tx_chain[i]; 1510 c->atu_sc = sc; 1511 c->atu_idx = i; 1512 if (c->atu_xfer == NULL) { 1513 c->atu_xfer = usbd_alloc_xfer(sc->atu_udev); 1514 if (c->atu_xfer == NULL) 1515 return(ENOBUFS); 1516 c->atu_mbuf = NULL; 1517 c->atu_buf = usbd_alloc_buffer(c->atu_xfer, 1518 ATU_TX_BUFSZ); 1519 if (c->atu_buf == NULL) 1520 return(ENOBUFS); /* XXX free xfer */ 1521 SLIST_INSERT_HEAD(&cd->atu_tx_free, c, atu_list); 1522 } 1523 } 1524 return(0); 1525 } 1526 1527 void 1528 atu_xfer_list_free(struct atu_softc *sc, struct atu_chain *ch, 1529 int listlen) 1530 { 1531 int i; 1532 1533 /* Free resources. */ 1534 for (i = 0; i < listlen; i++) { 1535 if (ch[i].atu_buf != NULL) 1536 ch[i].atu_buf = NULL; 1537 if (ch[i].atu_mbuf != NULL) { 1538 m_freem(ch[i].atu_mbuf); 1539 ch[i].atu_mbuf = NULL; 1540 } 1541 if (ch[i].atu_xfer != NULL) { 1542 usbd_free_xfer(ch[i].atu_xfer); 1543 ch[i].atu_xfer = NULL; 1544 } 1545 } 1546 } 1547 1548 /* 1549 * A frame has been uploaded: pass the resulting mbuf chain up to 1550 * the higher level protocols. 1551 */ 1552 void 1553 atu_rxeof(usbd_xfer_handle xfer, usbd_private_handle priv, usbd_status status) 1554 { 1555 struct atu_chain *c = (struct atu_chain *)priv; 1556 struct atu_softc *sc = c->atu_sc; 1557 struct ieee80211com *ic = &sc->sc_ic; 1558 struct ifnet *ifp = &sc->sc_if; 1559 struct atu_rx_hdr *h; 1560 struct ieee80211_frame_min *wh; 1561 struct ieee80211_node *ni; 1562 struct mbuf *m; 1563 u_int32_t len; 1564 int s; 1565 1566 DPRINTFN(25, ("%s: atu_rxeof\n", USBDEVNAME(sc->atu_dev))); 1567 1568 if (sc->sc_state != ATU_S_OK) 1569 return; 1570 1571 if ((ifp->if_flags & (IFF_RUNNING|IFF_UP)) != (IFF_RUNNING|IFF_UP)) 1572 goto done; 1573 1574 if (status != USBD_NORMAL_COMPLETION) { 1575 DPRINTF(("%s: status != USBD_NORMAL_COMPLETION\n", 1576 USBDEVNAME(sc->atu_dev))); 1577 if (status == USBD_NOT_STARTED || status == USBD_CANCELLED) { 1578 return; 1579 } 1580 #if 0 1581 if (status == USBD_IOERROR) { 1582 DPRINTF(("%s: rx: EEK! lost device?\n", 1583 USBDEVNAME(sc->atu_dev))); 1584 1585 /* 1586 * My experience with USBD_IOERROR is that trying to 1587 * restart the transfer will always fail and we'll 1588 * keep on looping restarting transfers untill someone 1589 * pulls the plug of the device. 1590 * So we don't restart the transfer, but just let it 1591 * die... If someone knows of a situation where we can 1592 * recover from USBD_IOERROR, let me know. 1593 */ 1594 splx(s); 1595 return; 1596 } 1597 #endif /* 0 */ 1598 1599 if (usbd_ratecheck(&sc->atu_rx_notice)) { 1600 DPRINTF(("%s: usb error on rx: %s\n", 1601 USBDEVNAME(sc->atu_dev), usbd_errstr(status))); 1602 } 1603 if (status == USBD_STALLED) 1604 usbd_clear_endpoint_stall_async( 1605 sc->atu_ep[ATU_ENDPT_RX]); 1606 goto done; 1607 } 1608 1609 usbd_get_xfer_status(xfer, NULL, NULL, &len, NULL); 1610 1611 if (len <= 1) { 1612 DPRINTF(("%s: atu_rxeof: too short\n", 1613 USBDEVNAME(sc->atu_dev))); 1614 goto done; 1615 } 1616 1617 h = (struct atu_rx_hdr *)c->atu_buf; 1618 len = UGETW(h->length) - 4; /* XXX magic number */ 1619 1620 m = c->atu_mbuf; 1621 memcpy(mtod(m, char *), c->atu_buf + ATU_RX_HDRLEN, len); 1622 m->m_pkthdr.rcvif = ifp; 1623 m->m_pkthdr.len = m->m_len = len; 1624 1625 wh = mtod(m, struct ieee80211_frame_min *); 1626 ni = ieee80211_find_rxnode(ic, wh); 1627 1628 ifp->if_ipackets++; 1629 1630 s = splnet(); 1631 1632 if (atu_newbuf(sc, c, NULL) == ENOBUFS) { 1633 ifp->if_ierrors++; 1634 goto done1; /* XXX if we can't allocate, why restart it? */ 1635 } 1636 1637 if (wh->i_fc[1] & IEEE80211_FC1_WEP) { 1638 /* 1639 * WEP is decrypted by hardware. Clear WEP bit 1640 * header for ieee80211_input(). 1641 */ 1642 wh->i_fc[1] &= ~IEEE80211_FC1_WEP; 1643 } 1644 1645 ieee80211_input(ic, m, ni, h->rssi, UGETDW(h->rx_time)); 1646 1647 ieee80211_free_node(ni); 1648 done1: 1649 splx(s); 1650 done: 1651 /* Setup new transfer. */ 1652 usbd_setup_xfer(c->atu_xfer, sc->atu_ep[ATU_ENDPT_RX], c, c->atu_buf, 1653 ATU_RX_BUFSZ, USBD_SHORT_XFER_OK | USBD_NO_COPY, USBD_NO_TIMEOUT, 1654 atu_rxeof); 1655 usbd_transfer(c->atu_xfer); 1656 } 1657 1658 /* 1659 * A frame was downloaded to the chip. It's safe for us to clean up 1660 * the list buffers. 1661 */ 1662 void 1663 atu_txeof(usbd_xfer_handle xfer, usbd_private_handle priv, 1664 usbd_status status) 1665 { 1666 struct atu_chain *c = (struct atu_chain *)priv; 1667 struct atu_softc *sc = c->atu_sc; 1668 struct ifnet *ifp = &sc->sc_if; 1669 usbd_status err; 1670 int s; 1671 1672 DPRINTFN(25, ("%s: atu_txeof status=%d\n", USBDEVNAME(sc->atu_dev), 1673 status)); 1674 1675 if (c->atu_mbuf) { 1676 m_freem(c->atu_mbuf); 1677 c->atu_mbuf = NULL; 1678 } 1679 1680 if (status != USBD_NORMAL_COMPLETION) { 1681 if (status == USBD_NOT_STARTED || status == USBD_CANCELLED) 1682 return; 1683 1684 DPRINTF(("%s: usb error on tx: %s\n", USBDEVNAME(sc->atu_dev), 1685 usbd_errstr(status))); 1686 if (status == USBD_STALLED) 1687 usbd_clear_endpoint_stall_async(sc->atu_ep[ATU_ENDPT_TX]); 1688 return; 1689 } 1690 1691 usbd_get_xfer_status(c->atu_xfer, NULL, NULL, NULL, &err); 1692 1693 if (err) 1694 ifp->if_oerrors++; 1695 else 1696 ifp->if_opackets++; 1697 1698 s = splnet(); 1699 SLIST_INSERT_HEAD(&sc->atu_cdata.atu_tx_free, c, atu_list); 1700 sc->atu_cdata.atu_tx_inuse--; 1701 if (sc->atu_cdata.atu_tx_inuse == 0) 1702 ifp->if_timer = 0; 1703 ifp->if_flags &= ~IFF_OACTIVE; 1704 splx(s); 1705 1706 atu_start(ifp); 1707 } 1708 1709 u_int8_t 1710 atu_calculate_padding(int size) 1711 { 1712 size %= 64; 1713 1714 if (size < 50) 1715 return (50 - size); 1716 if (size >=61) 1717 return (64 + 50 - size); 1718 return (0); 1719 } 1720 1721 int 1722 atu_tx_start(struct atu_softc *sc, struct ieee80211_node *ni, 1723 struct atu_chain *c, struct mbuf *m) 1724 { 1725 int len; 1726 struct atu_tx_hdr *h; 1727 usbd_status err; 1728 u_int8_t pad; 1729 1730 DPRINTFN(25, ("%s: atu_tx_start\n", USBDEVNAME(sc->atu_dev))); 1731 1732 /* Don't try to send when we're shutting down the driver */ 1733 if (sc->sc_state != ATU_S_OK) { 1734 m_freem(m); 1735 return(EIO); 1736 } 1737 1738 /* 1739 * Copy the mbuf data into a contiguous buffer, leaving 1740 * enough room for the atmel headers 1741 */ 1742 len = m->m_pkthdr.len; 1743 1744 m_copydata(m, 0, m->m_pkthdr.len, c->atu_buf + ATU_TX_HDRLEN); 1745 1746 h = (struct atu_tx_hdr *)c->atu_buf; 1747 memset(h, 0, ATU_TX_HDRLEN); 1748 USETW(h->length, len); 1749 h->tx_rate = 4; /* XXX rate = auto */ 1750 len += ATU_TX_HDRLEN; 1751 1752 pad = atu_calculate_padding(len); 1753 len += pad; 1754 h->padding = pad; 1755 1756 c->atu_length = len; 1757 c->atu_mbuf = m; 1758 1759 usbd_setup_xfer(c->atu_xfer, sc->atu_ep[ATU_ENDPT_TX], 1760 c, c->atu_buf, c->atu_length, USBD_NO_COPY, ATU_TX_TIMEOUT, 1761 atu_txeof); 1762 1763 /* Let's get this thing into the air! */ 1764 c->atu_in_xfer = 1; 1765 err = usbd_transfer(c->atu_xfer); 1766 if (err != USBD_IN_PROGRESS) { 1767 DPRINTFN(25, ("%s: atu_tx_start, err=%d", 1768 USBDEVNAME(sc->atu_dev), err)); 1769 c->atu_mbuf = NULL; 1770 m_freem(m); 1771 return(EIO); 1772 } 1773 1774 return (0); 1775 } 1776 1777 void 1778 atu_start(struct ifnet *ifp) 1779 { 1780 struct atu_softc *sc = ifp->if_softc; 1781 struct ieee80211com *ic = &sc->sc_ic; 1782 struct atu_cdata *cd = &sc->atu_cdata; 1783 struct ieee80211_node *ni; 1784 struct atu_chain *c; 1785 struct mbuf *m = NULL; 1786 int s; 1787 1788 DPRINTFN(25, ("%s: atu_start: enter\n", USBDEVNAME(sc->atu_dev))); 1789 1790 if ((ifp->if_flags & IFF_RUNNING) == 0) { 1791 return; 1792 } 1793 if (ifp->if_flags & IFF_OACTIVE) { 1794 DPRINTFN(30, ("%s: atu_start: IFF_OACTIVE\n", 1795 USBDEVNAME(sc->atu_dev))); 1796 return; 1797 } 1798 1799 for (;;) { 1800 /* grab a TX buffer */ 1801 s = splnet(); 1802 c = SLIST_FIRST(&cd->atu_tx_free); 1803 if (c != NULL) { 1804 SLIST_REMOVE_HEAD(&cd->atu_tx_free, atu_list); 1805 cd->atu_tx_inuse++; 1806 if (cd->atu_tx_inuse == ATU_TX_LIST_CNT) 1807 ifp->if_flags |= IFF_OACTIVE; 1808 } 1809 splx(s); 1810 if (c == NULL) { 1811 DPRINTFN(10, ("%s: out of tx xfers\n", 1812 USBDEVNAME(sc->atu_dev))); 1813 ifp->if_flags |= IFF_OACTIVE; 1814 break; 1815 } 1816 1817 /* 1818 * Poll the management queue for frames, it has priority over 1819 * normal data frames. 1820 */ 1821 IF_DEQUEUE(&ic->ic_mgtq, m); 1822 if (m == NULL) { 1823 DPRINTFN(10, ("%s: atu_start: data packet\n", 1824 USBDEVNAME(sc->atu_dev))); 1825 if (ic->ic_state != IEEE80211_S_RUN) { 1826 DPRINTFN(25, ("%s: no data till running\n", 1827 USBDEVNAME(sc->atu_dev))); 1828 /* put the xfer back on the list */ 1829 s = splnet(); 1830 SLIST_INSERT_HEAD(&cd->atu_tx_free, c, 1831 atu_list); 1832 cd->atu_tx_inuse--; 1833 splx(s); 1834 break; 1835 } 1836 1837 IFQ_DEQUEUE(&ifp->if_snd, m); 1838 if (m == NULL) { 1839 DPRINTFN(25, ("%s: nothing to send\n", 1840 USBDEVNAME(sc->atu_dev))); 1841 s = splnet(); 1842 SLIST_INSERT_HEAD(&cd->atu_tx_free, c, 1843 atu_list); 1844 cd->atu_tx_inuse--; 1845 splx(s); 1846 break; 1847 } 1848 #if NBPFILTER > 0 1849 if (ifp->if_bpf) 1850 bpf_mtap(ifp->if_bpf, m); 1851 #endif 1852 ni = ieee80211_find_txnode(ic, 1853 mtod(m, struct ether_header *)->ether_dhost); 1854 if (ni == NULL) { 1855 m_freem(m); 1856 goto bad; 1857 } 1858 m = ieee80211_encap(ic, m, ni); 1859 if (m == NULL) 1860 goto bad; 1861 } else { 1862 DPRINTFN(25, ("%s: atu_start: mgmt packet\n", 1863 USBDEVNAME(sc->atu_dev))); 1864 1865 /* 1866 * Hack! The referenced node pointer is in the 1867 * rcvif field of the packet header. This is 1868 * placed there by ieee80211_mgmt_output because 1869 * we need to hold the reference with the frame 1870 * and there's no other way (other than packet 1871 * tags which we consider too expensive to use) 1872 * to pass it along. 1873 */ 1874 ni = (struct ieee80211_node *)m->m_pkthdr.rcvif; 1875 m->m_pkthdr.rcvif = NULL; 1876 1877 /* sc->sc_stats.ast_tx_mgmt++; */ 1878 } 1879 1880 #if NBPFILTER > 0 1881 if (ic->ic_rawbpf) 1882 bpf_mtap(ic->ic_rawbpf, m); 1883 #endif 1884 1885 if (atu_tx_start(sc, ni, c, m)) { 1886 bad: 1887 s = splnet(); 1888 SLIST_INSERT_HEAD(&cd->atu_tx_free, c, 1889 atu_list); 1890 cd->atu_tx_inuse--; 1891 splx(s); 1892 /* ifp_if_oerrors++; */ 1893 if (ni != NULL) 1894 ieee80211_free_node(ni); 1895 continue; 1896 } 1897 ifp->if_timer = 5; 1898 } 1899 } 1900 1901 int 1902 atu_init(struct ifnet *ifp) 1903 { 1904 struct atu_softc *sc = ifp->if_softc; 1905 struct ieee80211com *ic = &sc->sc_ic; 1906 struct atu_chain *c; 1907 usbd_status err; 1908 int i, s; 1909 1910 s = splnet(); 1911 1912 DPRINTFN(10, ("%s: atu_init\n", USBDEVNAME(sc->atu_dev))); 1913 1914 if (ifp->if_flags & IFF_RUNNING) { 1915 splx(s); 1916 return(0); 1917 } 1918 1919 /* Init TX ring */ 1920 if (atu_tx_list_init(sc)) 1921 printf("%s: tx list init failed\n", USBDEVNAME(sc->atu_dev)); 1922 1923 /* Init RX ring */ 1924 if (atu_rx_list_init(sc)) 1925 printf("%s: rx list init failed\n", USBDEVNAME(sc->atu_dev)); 1926 1927 /* Load the multicast filter. */ 1928 /*atu_setmulti(sc); */ 1929 1930 /* Open RX and TX pipes. */ 1931 err = usbd_open_pipe(sc->atu_iface, sc->atu_ed[ATU_ENDPT_RX], 1932 USBD_EXCLUSIVE_USE, &sc->atu_ep[ATU_ENDPT_RX]); 1933 if (err) { 1934 DPRINTF(("%s: open rx pipe failed: %s\n", 1935 USBDEVNAME(sc->atu_dev), usbd_errstr(err))); 1936 splx(s); 1937 return(EIO); 1938 } 1939 1940 err = usbd_open_pipe(sc->atu_iface, sc->atu_ed[ATU_ENDPT_TX], 1941 USBD_EXCLUSIVE_USE, &sc->atu_ep[ATU_ENDPT_TX]); 1942 if (err) { 1943 DPRINTF(("%s: open tx pipe failed: %s\n", 1944 USBDEVNAME(sc->atu_dev), usbd_errstr(err))); 1945 splx(s); 1946 return(EIO); 1947 } 1948 1949 /* Start up the receive pipe. */ 1950 for (i = 0; i < ATU_RX_LIST_CNT; i++) { 1951 c = &sc->atu_cdata.atu_rx_chain[i]; 1952 1953 usbd_setup_xfer(c->atu_xfer, sc->atu_ep[ATU_ENDPT_RX], c, 1954 c->atu_buf, ATU_RX_BUFSZ, USBD_SHORT_XFER_OK | USBD_NO_COPY, 1955 USBD_NO_TIMEOUT, atu_rxeof); 1956 usbd_transfer(c->atu_xfer); 1957 } 1958 1959 DPRINTFN(10, ("%s: starting up using MAC=%s\n", 1960 USBDEVNAME(sc->atu_dev), ether_sprintf(ic->ic_myaddr))); 1961 1962 /* Do initial setup */ 1963 err = atu_initial_config(sc); 1964 if (err) { 1965 DPRINTF(("%s: initial config failed!\n", 1966 USBDEVNAME(sc->atu_dev))); 1967 splx(s); 1968 return(EIO); 1969 } 1970 DPRINTFN(10, ("%s: initialised transceiver\n", 1971 USBDEVNAME(sc->atu_dev))); 1972 1973 /* sc->atu_rxfilt = ATU_RXFILT_UNICAST|ATU_RXFILT_BROADCAST; */ 1974 1975 /* If we want promiscuous mode, set the allframes bit. */ 1976 /* 1977 if (ifp->if_flags & IFF_PROMISC) 1978 sc->atu_rxfilt |= ATU_RXFILT_PROMISC; 1979 */ 1980 1981 ifp->if_flags |= IFF_RUNNING; 1982 ifp->if_flags &= ~IFF_OACTIVE; 1983 splx(s); 1984 1985 /* XXX the following HAS to be replaced */ 1986 s = splnet(); 1987 err = ieee80211_new_state(ic, IEEE80211_S_SCAN, -1); 1988 if (err) { 1989 DPRINTFN(1, ("%s: atu_init: error calling " 1990 "ieee80211_net_state", USBDEVNAME(sc->atu_dev))); 1991 } 1992 splx(s); 1993 1994 return 0; 1995 } 1996 1997 #ifdef ATU_DEBUG 1998 void 1999 atu_debug_print(struct atu_softc *sc) 2000 { 2001 usbd_status err; 2002 u_int8_t tmp[32]; 2003 2004 /* DEBUG */ 2005 if ((err = atu_get_mib(sc, MIB_MAC_MGMT__CURRENT_BSSID, tmp))) 2006 return; 2007 DPRINTF(("%s: DEBUG: current BSSID=%s\n", USBDEVNAME(sc->atu_dev), 2008 ether_sprintf(tmp))); 2009 2010 if ((err = atu_get_mib(sc, MIB_MAC_MGMT__BEACON_PERIOD, tmp))) 2011 return; 2012 DPRINTF(("%s: DEBUG: beacon period=%d\n", USBDEVNAME(sc->atu_dev), 2013 tmp[0])); 2014 2015 if ((err = atu_get_mib(sc, MIB_MAC_WEP__PRIVACY_INVOKED, tmp))) 2016 return; 2017 DPRINTF(("%s: DEBUG: privacy invoked=%d\n", USBDEVNAME(sc->atu_dev), 2018 tmp[0])); 2019 2020 if ((err = atu_get_mib(sc, MIB_MAC_WEP__ENCR_LEVEL, tmp))) 2021 return; 2022 DPRINTF(("%s: DEBUG: encr_level=%d\n", USBDEVNAME(sc->atu_dev), 2023 tmp[0])); 2024 2025 if ((err = atu_get_mib(sc, MIB_MAC_WEP__ICV_ERROR_COUNT, tmp))) 2026 return; 2027 DPRINTF(("%s: DEBUG: icv error count=%d\n", USBDEVNAME(sc->atu_dev), 2028 *(short *)tmp)); 2029 2030 if ((err = atu_get_mib(sc, MIB_MAC_WEP__EXCLUDED_COUNT, tmp))) 2031 return; 2032 DPRINTF(("%s: DEBUG: wep excluded count=%d\n", 2033 USBDEVNAME(sc->atu_dev), *(short *)tmp)); 2034 2035 if ((err = atu_get_mib(sc, MIB_MAC_MGMT__POWER_MODE, tmp))) 2036 return; 2037 DPRINTF(("%s: DEBUG: power mode=%d\n", USBDEVNAME(sc->atu_dev), 2038 tmp[0])); 2039 2040 if ((err = atu_get_mib(sc, MIB_PHY__CHANNEL, tmp))) 2041 return; 2042 DPRINTF(("%s: DEBUG: channel=%d\n", USBDEVNAME(sc->atu_dev), tmp[0])); 2043 2044 if ((err = atu_get_mib(sc, MIB_PHY__REG_DOMAIN, tmp))) 2045 return; 2046 DPRINTF(("%s: DEBUG: reg domain=%d\n", USBDEVNAME(sc->atu_dev), 2047 tmp[0])); 2048 2049 if ((err = atu_get_mib(sc, MIB_LOCAL__SSID_SIZE, tmp))) 2050 return; 2051 DPRINTF(("%s: DEBUG: ssid size=%d\n", USBDEVNAME(sc->atu_dev), 2052 tmp[0])); 2053 2054 if ((err = atu_get_mib(sc, MIB_LOCAL__BEACON_ENABLE, tmp))) 2055 return; 2056 DPRINTF(("%s: DEBUG: beacon enable=%d\n", USBDEVNAME(sc->atu_dev), 2057 tmp[0])); 2058 2059 if ((err = atu_get_mib(sc, MIB_LOCAL__AUTO_RATE_FALLBACK, tmp))) 2060 return; 2061 DPRINTF(("%s: DEBUG: auto rate fallback=%d\n", 2062 USBDEVNAME(sc->atu_dev), tmp[0])); 2063 2064 if ((err = atu_get_mib(sc, MIB_MAC_ADDR__ADDR, tmp))) 2065 return; 2066 DPRINTF(("%s: DEBUG: mac addr=%s\n", USBDEVNAME(sc->atu_dev), 2067 ether_sprintf(tmp))); 2068 2069 if ((err = atu_get_mib(sc, MIB_MAC__DESIRED_SSID, tmp))) 2070 return; 2071 DPRINTF(("%s: DEBUG: desired ssid=%s\n", USBDEVNAME(sc->atu_dev), 2072 tmp)); 2073 2074 if ((err = atu_get_mib(sc, MIB_MAC_MGMT__CURRENT_ESSID, tmp))) 2075 return; 2076 DPRINTF(("%s: DEBUG: current ESSID=%s\n", USBDEVNAME(sc->atu_dev), 2077 tmp)); 2078 } 2079 #endif /* ATU_DEBUG */ 2080 2081 int 2082 atu_ioctl(struct ifnet *ifp, u_long command, void *data) 2083 { 2084 struct atu_softc *sc = ifp->if_softc; 2085 struct ifreq *ifr = (struct ifreq *)data; 2086 struct ieee80211com *ic = &sc->sc_ic; 2087 int err = 0, s; 2088 2089 s = splnet(); 2090 switch (command) { 2091 case SIOCSIFMEDIA: 2092 case SIOCGIFMEDIA: 2093 err = ifmedia_ioctl(ifp, ifr, &ic->ic_media, command); 2094 break; 2095 2096 default: 2097 DPRINTFN(15, ("%s: ieee80211_ioctl (%lu)\n", 2098 USBDEVNAME(sc->atu_dev), command)); 2099 err = ieee80211_ioctl(ic, command, data); 2100 break; 2101 } 2102 2103 if (err == ENETRESET) { 2104 if ((ifp->if_flags & (IFF_RUNNING|IFF_UP)) == 2105 (IFF_RUNNING|IFF_UP)) { 2106 DPRINTF(("%s: atu_ioctl(): netreset %lu\n", 2107 USBDEVNAME(sc->atu_dev), command)); 2108 ieee80211_new_state(ic, IEEE80211_S_INIT, -1); 2109 atu_initial_config(sc); 2110 ieee80211_new_state(ic, IEEE80211_S_SCAN, -1); 2111 } 2112 err = 0; 2113 } 2114 2115 splx(s); 2116 return (err); 2117 } 2118 2119 void 2120 atu_watchdog(struct ifnet *ifp) 2121 { 2122 struct atu_softc *sc = ifp->if_softc; 2123 struct atu_chain *c; 2124 usbd_status stat; 2125 int cnt, s; 2126 2127 DPRINTF(("%s: atu_watchdog\n", USBDEVNAME(sc->atu_dev))); 2128 2129 ifp->if_timer = 0; 2130 2131 if (sc->sc_state != ATU_S_OK || (ifp->if_flags & IFF_RUNNING) == 0) 2132 return; 2133 2134 sc = ifp->if_softc; 2135 s = splnet(); 2136 ifp->if_oerrors++; 2137 DPRINTF(("%s: watchdog timeout\n", USBDEVNAME(sc->atu_dev))); 2138 2139 /* 2140 * TODO: 2141 * we should change this since we have multiple TX tranfers... 2142 */ 2143 for (cnt = 0; cnt < ATU_TX_LIST_CNT; cnt++) { 2144 c = &sc->atu_cdata.atu_tx_chain[cnt]; 2145 if (c->atu_in_xfer) { 2146 usbd_get_xfer_status(c->atu_xfer, NULL, NULL, NULL, 2147 &stat); 2148 atu_txeof(c->atu_xfer, c, stat); 2149 } 2150 } 2151 2152 if (!IFQ_IS_EMPTY(&ifp->if_snd)) 2153 atu_start(ifp); 2154 splx(s); 2155 2156 ieee80211_watchdog(&sc->sc_ic); 2157 } 2158 2159 /* 2160 * Stop the adapter and free any mbufs allocated to the 2161 * RX and TX lists. 2162 */ 2163 void 2164 atu_stop(struct ifnet *ifp, int disable) 2165 { 2166 struct atu_softc *sc = ifp->if_softc; 2167 struct ieee80211com *ic = &sc->sc_ic; 2168 struct atu_cdata *cd; 2169 usbd_status err; 2170 int s; 2171 2172 s = splnet(); 2173 ifp->if_flags &= ~(IFF_RUNNING | IFF_OACTIVE); 2174 ifp->if_timer = 0; 2175 2176 usb_rem_task(sc->atu_udev, &sc->sc_task); 2177 ieee80211_new_state(ic, IEEE80211_S_INIT, -1); 2178 2179 /* Stop transfers. */ 2180 if (sc->atu_ep[ATU_ENDPT_RX] != NULL) { 2181 err = usbd_abort_pipe(sc->atu_ep[ATU_ENDPT_RX]); 2182 if (err) { 2183 DPRINTF(("%s: abort rx pipe failed: %s\n", 2184 USBDEVNAME(sc->atu_dev), usbd_errstr(err))); 2185 } 2186 err = usbd_close_pipe(sc->atu_ep[ATU_ENDPT_RX]); 2187 if (err) { 2188 DPRINTF(("%s: close rx pipe failed: %s\n", 2189 USBDEVNAME(sc->atu_dev), usbd_errstr(err))); 2190 } 2191 sc->atu_ep[ATU_ENDPT_RX] = NULL; 2192 } 2193 2194 if (sc->atu_ep[ATU_ENDPT_TX] != NULL) { 2195 err = usbd_abort_pipe(sc->atu_ep[ATU_ENDPT_TX]); 2196 if (err) { 2197 DPRINTF(("%s: abort tx pipe failed: %s\n", 2198 USBDEVNAME(sc->atu_dev), usbd_errstr(err))); 2199 } 2200 err = usbd_close_pipe(sc->atu_ep[ATU_ENDPT_TX]); 2201 if (err) { 2202 DPRINTF(("%s: close tx pipe failed: %s\n", 2203 USBDEVNAME(sc->atu_dev), usbd_errstr(err))); 2204 } 2205 sc->atu_ep[ATU_ENDPT_TX] = NULL; 2206 } 2207 2208 /* Free RX/TX/MGMT list resources. */ 2209 cd = &sc->atu_cdata; 2210 atu_xfer_list_free(sc, cd->atu_rx_chain, ATU_RX_LIST_CNT); 2211 atu_xfer_list_free(sc, cd->atu_tx_chain, ATU_TX_LIST_CNT); 2212 2213 /* Let's be nice and turn off the radio before we leave */ 2214 atu_switch_radio(sc, 0); 2215 2216 splx(s); 2217 } 2218